This job opportunity is no longer available.
This page has been archived for your
reference. You can try to continue to this position on the employer's website
or try a new search. Inquiries related
to this position should be directed to the employer.
Description
Basic Qualifications:
Must possess three or more years experience working on medium to large multidisciplinary, security/ risk projects.
Core Competencies
- Bachelor Degree in Computer Science, Information Systems, Engineering, or an equivalent combination of education, training, and experience.
- Typically possesses six or more years conducting Information Security risk analysis/ assessments and application reviews, and providing recommendations.
- Demonstrated experience in computer/network security, operating systems such as UNIX and NT, LAN/WAN networking protocols such as TCP/IP, firewalls, IDS/IPS, PKI, and encryption.
- Demonstrated experience in establishing and following formalized security review/risk assessment processes, procedures and frameworks.
- Demonstrated knowledge of information security concepts and methodologies, as well a practical understanding of security principles such as authentication, authorization, access controls, and protection strategies.
- Demonstrated experience working with information security related risks, as well as regulatory, audit, and compliance requirements, such as: SOX, SB1386, HIPAA, and NERC.
- Demonstrated experience working on projects that require partnership with all company areas.
- Demonstrated ability to interface effectively and collaborate with clients, peers, vendors, and management to develop solutions and ensure stakeholder buy-in.
- Demonstrated knowledge of technical and platform security technology, processes and strategies at the enterprise level to ensure that all business and technical initiatives are implemented to the appropriate level of protection.
- Demonstrated ability to accurately analyze information and make sound decisions under pressure.
- Demonstated ability to mentor and train junior security analysts in risk assessments, security reviews, internal controls, general controls, application controls, and related business communications.
- Proficiecny in Microsoft Word, Excel, Powerpoint, and Lotus Notes
- Must demonstrate excellent business mastery, including the ability to integrate work across relevant areas, develop the business and services to enhance customer satisfaction and productivity, manage risks and safety appropriately, manage information, and provide exceptional service to internal and external customers.
- Must demonstrate excellent management mastery, including effective resource and project planning, decision making, results delivery, team building, and staying current with relevant technology and innovation.
- Must demonstrate strong personal mastery, including ethics, influence and negotiation, leadership, interpersonal skills, communication, the ability to effectively manage stress and engage in continuous learning.
COMMENTS: Additional testing may be required as part of the selection process for this position.
Preferences:
CISSP Certification, CISM Certification, and/or CISA Certification.
IT Audit experience
Experience working as an external consultant
MBA degree
Typical Responsibilities:
The successful Information Security Analyst will provide technical security guidance, as well as leadership to project teams. Typical responsibilities will include: Developing written recommendations and performing medium to complex end-to-end security assessments; designing security solutions and providing recommendations for technical programs and projects; leading or participating on security projects that support the Information Security Program using the specialized expertise and discipline of information security, as well as company and department program management (or Project Management Office) methodologies; conducting security reviews and risk assessments of applications and infrastructure with industry standard tools and methodologies; evaluating and recommending the application of security methodology for new, emerging, or existing technology, such as smart cards and public key infrastructure managemenusing security metrics and statistics on incidents and on-line threats to demonstrate effectiveness, compliance, and return on investment; facilitating the integration of security architecture and strategies into programs and projects; ensuring the continuing evaluation and implementation of current controls for both perimeter security and internal security (network security, intelligence services, and remote access); providing status reports and timekeeping material; performing administrative tasks as required; establishlishing and designing protection strategies for extranet security, such as contractor access, strategic vendor ccess, and contract reviews; acting as the subject matter expert in recommending appropriate security technologies for major system platforms: mainframe, UNIX, and Windows, RACF, Bindview, web security, forensic tools, and configuration checkers; acting as the subject matter expert in designing and recommending appropriate security measures for security disciplines, such as access controls, authentication, userid/password management; functioning as a resource for securing networks, systems, and applications; and performing other duties and responsibilities as assigned
To view job at edisonjobs.com please select the "Southern California Edison" or "Edison International" logo.
Edison International and Southern California Edison reserve the right to close or cancel a posting at any time.
If you are interested in this position, please submit your resume in confidence by visiting www.edisonjobs.com.
Edison International is an Equal Opportunity Employer.
Details:
Job Id:
SCE - NB60510816EA
Position Type:
Full Time
Education Level:
Bachelor's Degree
Experience Level:
2+ to 5 years
Posted / Updated:
11/23/2009 6:22:06 PM
Map
Careers & Community for Talented People with Disabilities