Information Security Analyst 4

Job Description

Link Technologies (LinkTechConsulting.com), a Las Vegas-based IT consulting firm, is currently seeking an Information Security Analyst 4 to join our team.
JOB SUMMARY
This position will support security team by performing key information security duties and assisting in the development of policies to meet audit and compliance requirements from the IRS and SSA.

REQUIREMENTS

• Proven experience in conducting comprehensive risk assessments for complex IT environments.
• Ability to develop, implement, and maintain information security frameworks, including security guides, policies, and strategic plans.
• Experience delivering end-to-end information security solutions, covering a broad spectrum of environments, from desktops to mainframes, and including system interfaces, networks, and physical sites.
• Proficient in designing, planning, implementing, and testing secure systems including involvement in the certification and accreditation (C&A) process.
• Skilled in the use of support tools and methodologies for the secure construction and deployment of information systems.
• Ability to assess and prioritize the impact of security threats on business operations.
• Expertise in planning and executing COOP and DR strategies to ensure minimal downtime during security incidents.
• Strong understanding of risk identification, analysis, and mitigation strategies to support secure system design and operational resilience.

PREFERRED

• Candidates with experience supporting the development of a comprehensive information security program for integrated IT systems, particularly within public sector environments.
• Ideal applicants will have collaborated with both management and technical teams and demonstrated expertise in three or more of the following 10 security domain areas:
  • Access Control - Management of centralized, decentralized, remote, and federated access solutions.
  • Application/System Development Security - Implementation of secure development practices, including validation, verification, and adherence to security guidelines.
  • Continuity of Operations/Disaster Recovery Planning - Experience in planning for and executing business recovery in the face of disruptions.
  • Cryptography - Knowledge of secure methods for transport, data storage, authentication, and non-repudiation techniques.
  • Information Security Management - Development and promotion of security awareness programs, risk management practices, policy creation, and procedural standards.
  • Operational Security (OPSEC) - Proficiency in identifying and mitigating threats, understanding hostile code, and employing countermeasures.
  • Physical and Technical Security - Implementation of access control systems, structural security, and environmental safeguards.
  • Security Architecture and Models - Familiarity with security design methodologies and the application of security operational standards.
  • Security Law, Investigation, and Ethics - Understanding of cybercrime response, incident investigation procedures, and regulatory compliance.
  • Telecommunications and Network Security - Experience with network segmentation, monitoring tools, virtual private networks, firewalls, and intrusion prevention systems.

RESPONSIBILITIES

• Develop and implement a Security Vulnerability Management Program to identify, track, and remediate security risks across the organization.
• Assist in the creation and documentation of the Disaster Recovery Plan.
• Review and provide feedback on security and disaster recovery deliverables submitted for the project.
• Offer guidance and technical support on the Oracle Cloud project, specifically related to Oracle Security product implementation and best practices.
• Contribute to a wide range of security functions, including the development and enforcement of security policies and oversight of data protection efforts across assigned systems.
• Conduct security audits to ensure compliance with state and federal regulations and internal security standards.
• Lead or assist with security investigations, administration of security awareness training, and the development of access control recommendations.
• Manage badge access systems and participate in threat assessments involving email and web gateway traffic.
• Evaluate and respond to threat detection alerts ensuring timely notification and appropriate remediation actions.
• Review and assess software and hardware recommendations, including cost estimation and justification for security-related tools or infrastructure.
• Supervise IT professional staff responsible for supporting the security requirements.
• Develop standard operating procedures for security-related operations including internal equipment log reviews and infrastructure monitoring.
• Maintain oversight of IT security infrastructure ensuring continuous protection of systems and data assets.

Link Technologies is an equal opportunity employer. All qualified applicants will receive consideration for employment without discrimination based on race, color, religion, sex, gender identity/expression, sexual orientation, national origin, protected veteran status, disability, or any other factors protected by law.