CISSP Jobs - Information Security Analyst, 13029

at Source Select Group
Location Tampa, FL
Date Posted February 7, 2019
Category Default
Job Type Contractor


Information Security Analyst
Type: Contract to Hire ( 3 Months)

The Information Security Analyst will participate in developing, coordinating, implementing, and maintaining standards and procedures to protect the security and integrity of information systems and data. 

Specific duties:

  • Conduct, support, and report on risks associated with AF’s information systems through careful analysis and systems review
  • Monitor events and alerts generated by information security controls and monitoring systems, access and privileges management, and asset management tools to recommend changes to meet industry and company best practices and standards
  • Coordinate and/or perform vulnerability scans on internal and external information systems and share results with operations and compliance teams
  • Identify, monitor and report on the progress of the deployment of patches
  • Support the different operation teams in selection of information security controls and assist with information system controls assessment process prior to release into production
  • Generate and prepare reports associated with the performance of information security controls
  • Maintain accurate inventory of assets and ensure documentation of assets destruction
  • Participate in the investigation and documentation of security-related events
  • Foster a culture of compliance by assisting in security awareness trainings
  • Handle customers security related requests
  • Maintain knowledge of security best practices

Experience Necessary: 

  • 4+ years of progressive experience in information security
  • Bachelor degree in information security or related field

Certifications required- One or more of the following:

  • Security +, SSCP, CISSP, CISA

Or a Master’s degree in information security


  • Knowledge of access and identity management systems – AD, Tacacs, Radius
  • Knowledge of patch management systems – WSUS, Spacewalk, Kaspersky
  • Knowledge of management of network devices - routers, switches and firewalls
  • Knowledge of secure coding techniques, integration of security into SDLC, logical access controls, various operating systems and applications, principles of IT security, virus/malware protection techniques and IT security technologies
  • Knowledge of virtualization and virtualized environments is strongly desired
  • Demonstrate experience identifying potential security risks, and must be able to develop action plans and carry them out quickly and effectively
  • Must be able to communicate effectively, both orally and in writing
  • Demonstrate experience in responding to security incidents and executing methodologies to counteract exploits that are attempted against IT assets