Information Security Analyst

The Pictsweet Company is growing! A 4th generation family owned company established in 1945, Pictsweet is a frozen vegetable producer with agricultural roots.  We are currently recruiting for an Information Security Analyst.  The Information Security Analyst will support multiple security systems (firewalls, endpoint protection, security awareness and phishing programs, vulnerability scanning utilities) and will be responsible for ensuring approved security measures are installed or working as designed. Daily attention to system logs, dashboards and reports is expected. This role would be responsible for creating and maintaining security policies and procedures for the enterprise. The analyst will be a liaison to end users for security related issues and training.

• Install security measures and operate software/features
• Upgrade systems to enable security software/features
• Install, manage and monitor security devices such as firewalls and VPNs
• Install and manage security endpoint protection systems
• Implement and manage an Information Security Awareness Program
• Test and evaluate new technology
• Perform security scanning and penetration testing
• Analyze IT requirements and provide objective advice on the use of IT security requirements
• Gather feedback from end-users to continue to improve systems
• Analyze and implement efficient IT security systems
• Develop policies, processes and standards
• Prepare reports
• Analyze log data from servers, network devices, PCs
• Develop and lead the organization’s Computer Security Incident Response Team (CSIRT)
• Participate in key product evaluation and improvements as they relate to the computer hardware environment
• Assist with network, server, and software support as needed
• Other responsibilities as may be assigned by management

The above statements are intended only to describe the general nature of the job, and should not be construed as an all-inclusive list of position responsibilities.

• Bachelor’s degree in computer science or other related technical discipline.
• Experience in Information Security with at least one of the following certifications: CISSP, CISM, CISA, NCSF, CEH, Cisco Associate.
• Analytical thinking – Break down complex information into fundamental parts or principles
• Critical thinking – Evaluate information and determine how to interpret
• Knowledge of Information Security Frameworks such as ISO 27001 or NIST 800-53
• Experience with penetration testing and techniques
• Understanding of patch management
• Knowledge of firewalls
• Knowledge of endpoint protection systems
• Knowledge of intrusion detection and prevention systems (IDPS)
• Experience in troubleshooting and testing various computer equipment, peripheral, data communication and computer network systems. 
• Ability to effectively communicate, both verbally and in writing.
• Ability to establish and maintain effective working relationships with employees, departments and the general public.
• Willingness to travel as needed.