Posted by Overview
Amdocs helps those who build the future to make it amazing. With our market-leading portfolio of software products and services, we unlock our customers’ innovative potential, empowering them to provide next-generation communication and media experiences for both the individual end user and enterprise customers.
Information Security Analyst – USA
Job Description:
Secures enterprise information by developing, implementing, and enforcing security controls, safeguards, policies, and procedures
Develop, implement, and administer security policies and plans for Amdocs as well as carry out information security activities in accordance with the established policies and guidelines
Build and assess security policies for the OS, network, and database. This will require analyzing and evaluating security vulnerabilities, and managing security systems such as anti-virus, firewalls, patch management, intrusion detection, and encryption
Recommend fixes, security patches, and any other measures required in the event of a security breach. Assist in coordinating contingency plan tests on a periodic basis
Coordinate security orientation and security awareness programs. You will build standard operating procedures for security tools and processes per industry best practices
Be responsible for carrying out penetration testing and vulnerability assessments to align with client security needs across countries
You will design, implement, and report on security system and end-user activity audits; monitor server, application, and network traffic for unusual or suspicious activity; interpret activity and make recommendations for resolution
You will be responsible for coordinating, assessing & addressing customer security needs
Qualification:
Bachelor degree in engineering or equivalent
CISA/CISM preferable
CISSP/CEH preferable
ISO27001 certified
Experience with operating systems (Windows, Linux, and Unix) and network
Knowledge and hands-on experience with TCP/IP and other network protocols. Knowledge of firewall architecture and design, network architecture, and monitoring and reporting solutions to proactively identify issues and mitigate risk
Knowledge of information security concepts and methodologies
Knowledge of compliances (PCI DSS, SoX, DPA, and so on) and IS standards (ISO 27001, BS25999, ISO 20000, OWASP, and so on)
Knowledge of risk management methodologies and approach
Knowledge of Secure SDLC methodology