Cambridge Investment Research Information Security Analyst in Main Campus, Iowa

Cambridge Investment Research, Inc., a national leader as a securities broker/dealer, has openings in the Technology department for a full time Information Security Analyst and Senior Information Security Analyst.

Essential Duties and Responsibilities:

  • Assist in all information security related education and awareness activities

  • Measure, track and report the security vulnerability status of IT assets

  • Configure and operate vulnerability management systems

  • Collaborate with IT and IS teams on projects and specialist areas

  • Consult with IT teams on remediation of vulnerabilities

  • Provide and escalation path for technical support and advice on specialist areas to security team members and other IT functions

  • Monitor vulnerability and policy compliance management systems

  • Track and monitor vulnerability status and report risks

  • Contribute to the creation of security principles, technical reference architectures, standards, baselines blueprints

  • Monitor threat management systems and identify incidents

  • Investigate, analyze and escalate resolution of security incidents

  • Contribute to security operations including approval, change, and authorizations

  • Perform end user device threat containment and access control enforcing security policies and restrictions using network security technology

  • Acting as a liaison between IT Operation and IS application development teams

  • Must be available to perform scheduled maintenance activities and on-call support non- business hours.

Profession Experience:

Strong experience required in some or all of following:

  • This position requires strong technical skills, excellent communications and problem-solving skills and the ability to engage and interact with numerous external teams.

  • Knowledge and experience with ethical hacking, firewall and intrusion detection/prevention technologies, and threat modeling.

  • Knowledge and experience of virtualization technologies, Windows and Unix/Linux operating systems.

  • Knowledge and experience of network and server hardware infrastructures and network technologies

  • Knowledge of Cisco firewalls, switches, and routers

  • Microsoft Windows Active Directory Administration

  • Windows Server 2008-2012 installation and administration

Experience in the following is highly desirable:

  • Experience with secure network architectures, identity and access management principles, application security, encryption technologies, TLS, SSL, DNS, databases and web applications.

  • RSA SecurID, Data Loss Prevention (DLP), and Archer eGRC

  • Cisco Web and Email Security

  • Fireeye Network Security solutions

  • Knowledge of desktop, server and network hardware helpful for troubleshooting application performance

Education/Experience:

Information Security Analyst:

  • AAS or 2 years of information security related experience.

  • Cisco Certified Network Administrator (CCNA) or CompTIA Security+ certification is preferred

Senior IT Information Security Analyst:

  • Bachelor's degree or equivalent experience in IT Security Computer Science required or 6 years of information security related experience.

  • Certified Information Systems Security Professional (CISSP) or Cisco Certified Security Professional (CCSP) is preferred