Role : IT Security AnalystLocation : Sunninghill Job Description : The IT Security Analyst is responsible for effective design, provisioning, installation / configuration, operation, and administration of security systems, software and related infrastructure.
This individual participates in technical research and development to enable continuing innovation within the security landscape.
This individual ensures that system configurations, all activities undertaken align with agreed service levels and proactively seek ways to improve the provision of services to the wider organisation.
This individual will assist project teams with technical issues in the Initiation and Planning phases of our standard Project Management Methodology.
technical analysis and design; and support of operations staff in executing, testing and rolling-out the solutions.Participation on projects is focused on smoothing the transition of projects from development staff to production staff by performing operations activities within the project life-cycle.
This individual will be responsible for the Group Firewalls, Network Security Technologies, VPNs, and Infrastructure Design from an information security perspective.
The IT security Analyst will deal with the day to day information security related operational issues and security based exceptions, administration and reporting.
The individual will deal with all operational aspects of the Fortigate Firewalls, the managed SIEM and administration of information security based functions and infrastructure.
The individual will actively participate in the development of Information Security Controls, Policies and Procedures.This individual is responsible for information security based aspects of the following Systems including, but not limited to : FortiGate firewalls, FortiAnalyzer, FortiWeb, FortiAuthenticator, Active Directory, File Services, Network Access Control, Windows and Linux based Operating Systems, IBM, Hyper-V, Information Security management and reporting toolsets.
Responsibilities : Engineering and ProvisioningEngineering of system related information security solutions for various project and operational needs.
Ensure all new, rebuilt and existing security devices configurations, hardware, software, peripherals, services, settings, directories, storage, etc.
is in accordance with security standards and project / operational requirements.Develop and maintain information security configurations, guidelines and procedures.
Contribute to and maintain system security standards.Research and recommend innovative, and where possible automated approaches for system administration tasks and information security policies and procedures.
Identify approaches that leverage our resources and provide economies of scale.Operations and SupportPerform daily information security monitoring, reporting and verifying the integrity and availability of business critical resources, systems and key processes, reviewing system and application logs, and verifying completion of scheduled jobs within the Information Security portfolio.
Perform regular security monitoring to identify any possible intrusions.Create, change, and delete firewall rules, policies as per the Information security standards and best practices.
Provide Tier III / other support per request from various departments and business units.Investigate and troubleshoot information Security incidents and issues.
Identify, recover from and report Information security incidents and breaches.Coordinate and communicate with impacted business units and / or departments.
MaintenanceApply and report on security updates and upgrades on a regular basis, and upgrade administrative tools and utilities.
Configure / add new services as necessary to adhere to the Information security standards.Upgrade and configure system devices and software that supports Information Security based infrastructure or applications as per project or operational needs.
Maintain operational, configuration, or other procedures relating to Information security.Perform periodic performance reporting to support capacity planning.
Perform ongoing performance tuning, hardware upgrades, and resource optimization as required.Maintain data centre environmental and security standardsTechnology, Innovation and growthEnsure that the required modifications are made to designs, configurations and architecture of existing infrastructure to ensure optimum use of all hardware and software resources.
Conduct regular reviews and revisions of the Capacity Plan, in line with the organisations business planning cycle, identifying current usage and forecast requirements during the period covered by the planProactively improving service availability wherever possible, and optimising the availability of the IT Security Infrastructure to deliver cost-effective improvements that deliver tangible benefits to the business.
Research knowledge of future demand for IT services and predicts the effects of demand on performance service levels.Provide direction for future capacity requirements based on business plans, usage trends, sizing of new services, Information Security requirements etc.
Stakeholder ManagementInterfaces with Information Management Team and IT Technical team to define and create Information Security services and solutions in line with business requirementsInterface with 3rd party vendors to ensure operations conform to best practice and industry standards.
Personal and Professional DevelopmentPerform operations as part of the technical Infrastructure teamMentor and involve junior team members and provide in house training as required.
Develop "personal development plan".Short, medium and long Term.Manage personal KPI's in accordance with company policy and performance management guidelines.
Ensure that the Infrastructure team meets the agreed incident, problem and service level agreements.Adhere to team plans for Projects as required, manage own deliverables and timeframes to ensure that the team deliver to committed tasks and projects deadlines.
Job Requirements : National Diploma / IT Diploma / BSC Computer ScienceNSE 4 FortiGate Network Security ProfessionalCertified Information Systems Security Professional (CISSP)Cisco Certified Network Associate Security (CCNA Security)Fortinet NSE 6 FortiAuthenticatorFortinet NSE 6 - FortiWebFortinet NSE 5 - FortiAnalyzerFortinet NSE 5 - FortiManagerMinimum 4 - 6 years in Security Administration / Network Security role