TitleSenior Information Security Analyst
Location IDKansas City
A large utility company in downtown KCMO is looking for a Senior Information Security Analyst for a possible multi-year engagment.

Bachelor's degree in Information Systems, Computer Science or related field is preferred. CISSP or other industry certifications are desired. Successful candidates generally have 2 or more years of experience in information security & 5 or more years of experience in IT. Skills in computer software, technical aptitude & the ability to learn & utilize new software systems are required. Required to function independently to analyze information & report variances. Effective oral & written communication skills are necessary, especially the ability to present technical information to an audience w/ a varying range of information technology experience.

Description of Duties:
  • Contribute to the effectiveness of the Information Security Program by assisting w/ the documentation & implementation of plans that deter security threats & minimize the impact of a possible system breach.
  • Provides security expertise, technical guidance & information to applications development staff, data networking, server administration teams, database administration & other corporate employees.
  • Participates in medium to highly complex projects; oversees team level projects impacting security. Stays informed of progress on projects impacting security.
  • Works w/ leadership, information security analysts & other IT areas to ensure that systems have been properly hardened, security issues have been properly addressed & security solutions have been implemented.
  • Perform detailed security reviews of information systems & assists in identifying mitigation strategies for the identified vulnerabilities.
  • Implement information policies, procedures & practices to safeguard corporate information assets & to comply w/ laws & regulatory obligations.
  • Research & recommend information security controls.
  • Collaborates w/ application owners to implement effective information security controls.
  • Identifies, plans, implements, documents, & complies w/ procedures for complying w/ Sarbanes-Oxley Act (SOX) & North American Electric Reliability Corporation Critical Infrastructure Protection (NERC CIP) regulations.

Skills, knowledge & abilities:

  • Solid understanding of information technology asset lifecycles.
  • Solid understanding of Information Security frameworks.
  • Broad knowledge across IT disciplines, including multiple operating systems & IP networking.
  • Good understanding of IT infrastructure components & applicability of component definition & use across IT teams.
  • Proven project management skills.S
  • trong skills w/ Microsoft Office products, i.e., Outlook, Word, Excel, PowerPoint, Project & Visio.
  • Self-motivated, goal oriented & an innovative thinker.
  • Strong interpersonal & team building skills; ability to work w/ a diverse team & help influence/drive change across functional & business boundaries.
  • Continuous improvement attitude; ability to seek out & implement leading IT infrastructure practices.
  • Ability to research & apply security controls to emerging technology issues, existing technology issues as well as energy related business impacting opportunities.
  • Ability to explain technical material in non-technical terms.
  • Ability to prioritize tasks based on criticality & meet deadlines.
  • Quickly adapts to the demands inherent in managing multiple customer needs & requirements simultaneously.
  • Ability to apply common sense, understand & carry out instructions furnished in written, oral or diagram form & to deal w/ problems using a logical problem solving approach.