Cyber Security Vulnerability Analyst

Holiday Inn Club Vacations looks for individuals who excel in their role and are committed to delivering an exceptional experience for our guests, owners, and team members. We look for individuals who are passionate in life and bring those qualities to work every day. Do you instill confidence, trust, and respect, encourage success and build relationships? We’re looking for people like this to join our friendly, engaged, professional team.

The Cyber Security Vulnerability Analyst is responsible for providing day-to-day administration for HICV’s Cyber Security Vulnerability Management Program. These responsibilities include configuration and management of various security hardware/software applications, monitoring and alerting security threats, and facilitating the remediation of those threats. The security analyst provides services and support across a diverse range of business applications, while adhering strictly to compliance and operational risk controls in accordance with regulatory standards, and HCV’s policies and practices. The position requires a high degree of technical proficiency and familiarity with software, system and network security issues in large enterprise environments.

ESSENTIAL DUTIES AND TASKS:

• Manage, maintain and monitor multiple security technologies, such as vulnerability scanning solutions, IDS/IPS, anti-virus technologies, DLP capabilities, SIEM technologies, host forensics and malware analysis, web application firewalls and proxy solutions.

• Assess security information, triaging and responding to security events, identify false positives, and conduct correlation analysis across numerous internal and external data sources while prioritizing information security incidents.

• Coordinates the handling and resolution of security incidents, to include system intrusions and abuse and acts as a primary point of contact for security operations team.

• Provides technical guidance to the Information Technology staff about threats, risks and control measures associated with new and emerging information systems technologies.

• Reviews, updates, and enforces data security practices within the corporate and resort systems environments; tests for exposures to ensure adherence to guidelines and procedures and works with platform experts to implement remedial measures as appropriate.

QUALIFICATIONS:

• Bachelor’s Degree in Information Systems, Computer Science or equivalent combination of education, training, or work experience.

• Minimum of 2 years of experience in an IT role focusing on information security

• 1 year experience in analyzing results for a vulnerability scanning solution

• Hands on experience with mitigating security controls (i.e., anti-virus, IPS/IDS, DLP, web and network proxies, URL content filtering, multi-factor authentication, SSL VPN’s) and how they work in an overall defense in depth risk assessment methodology.
• Experience in incidence response required; (e.g. In-depth knowledge of Windows/Unix operating system forensics, event logging systems, authentication methods, remote and local web application security, penetration testing).
• Solid understanding of network, workstation, and server security configuration

• Ability to establish cross-functional, collaborative relationships with business and technology partners

• Excellent relationship-building skills and cultural awareness, along with the ability to work effectively in a matrixed environment

• Ability to effectively prioritize and execute tasks in a high-pressure environment