Position Overview Type: Full-Time Location: Huntsville, AL Travel: None Clearance: Active Secret Clearance Work Authorization: U.S. Citizenship required
Summary/Objective Five Stones Research Corporation (5SRC) is seeking energetic candidates to join our established and growing Huntsville-headquartered family.
Essential Functions
The Analyst probes the safety and effectiveness of computer systems and their related security components.
Generates a detailed report that outlines the effectiveness of the system, explains any security issues, and suggests changes and improvements.
Inspects and evaluates financial and information systems, management procedures and security controls.
Evaluates the efficiency, effectiveness, and compliance of operation processes with corporate security policies and related government regulations.
Develops and administers risk-focused exams for IT systems.
Reviews or interviews personnel to establish security risks and complications.
Executes and properly documents the audit process on a variety of computing environments and computer applications.
Assess the exposures resulting from ineffective or missing control practices.
Accurately interprets audit results against defined criteria.
Weighs the relevancy, accuracy, and perspective of conclusions against audit evidence.
Develops rigorous best practice recommendations to improve security on all levels.
Works with management to ensure security recommendations comply with company procedure.
Collaborate with departments to improve security compliance, manage risk, and bolster effectiveness.
Reasonable Accommodations
Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Required Education and Experience
Bachelors degree in Computer Science, Cyber Security, or a related field
Five (5) years technical experience
Experience with Red Hat Enterprise Linux
Experience with UNIX
Experience with IDS/IPS, penetration and vulnerability testing
Experience with DLP, anti-virus and anti-malware TCP/IP, computer networking, routing and switching
Experience with firewall and intrusion detection/prevention protocols
Experience with Windows operating systems
Experience with network protocols and packet analysis tools
Experience with C, C++, C#, Java or PHP programming languages
Experience with Cloud computing
Experience with SaaS models
Experience with Security Information and Event Management (SIEM)
Preferred Education and Experience
Three (3) to six (6) years of IT Security auditing experience
Certification (Need one technical and one CND Auditor): One Technical Level II or III: GIAC Security Essentials Certification (GSEC), CompTIA Security+ Certification (Security+), Security Certified Network Professional (SCNP), Systems Security Certified Practitioner (SSCP), Certified Information Systems Auditor (CISA), GIAC Information Security Expert (GSE), Security Certified Network Architect (SCNA), GIAC Certified Incident Handler (GCIH), Certified Information Systems Security Professional (CISSP)
One CND Auditor: Certified Ethical Hacker (CEH), GIAC Systems and Network Auditor (GSNA), Certified Information Systems Auditor (CISA)
Professional user of MS Office 365 Suite (i.e. Outlook, Word, Excel, and PowerPoint)
What we offer
401(k) Matching
Dental Insurance
Company Events
Employee Health Clinic
Employee Recognition Programs
Health Insurance
Life Insurance
Paid Time Off
Parental Leave
Performance Incentives
Student Loan Repayment Program
Tuition Reimbursement
Vision Insurance
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.