CenturyLink Lead Information Assurance Analyst in WORKS FROM HOME, Texas
CenturyLink (NYSE: CTL) at http://www.centurylink.com/ is the second largest U.S. communications provider to global enterprise customers. With customers in more than 60 countries and an intense focus on the customer experience, CenturyLink strives to be the world’s best networking company by solving customers’ increased demand for reliable and secure connections. The company also serves as its customers’ trusted partner, helping them manage increased network and IT complexity and providing managed network and cyber security solutions that help protect their business.
The Sr. Information Assurance Analyst position is responsible to the operations manager for advanced network security tasks/processes in a complex, secure and challenging environment in support of a nationwide fiber-optic transport network and two geographically separated network operations centers.
Understand the security posture and requirements of the overall network
Document and validate compliance with NIST 800-53 RMF security controls
Conduct vulnerability scans, review and analyze vulnerability scan results, work with engineers to resolve vulnerabilities, and track vulnerability resolution
Manage the configuration of a SIEM, review and analyze audit logs, respond to SIEM alerts, track alert status, and remediate the effects of unauthorized user activity
Manage a POA&M to ensure timely resolution of outstanding vulnerabilities
Complete month security reporting requirements in a timely manner is accordance with customer schedule
Implement and evaluate DoD SRG and STIG
Track and report overall status of government required training for all team member
Experience with IDS/IPS, ASA Firewall, HBSS, ISE, and Ciena optical equipment highly desired
Communicate status of security system, processes, ongoing malicious activity, and possible vulnerabilities with management and customers
Prepare and maintain security assessment and authorization documentation (SOP, SSP, MSSP, RAR, SCTM)
Maintain thorough understanding of NIST 800-53 controls, determine controls applicable to the application, and document implementation in SCTM
Maintain day-to-day security posture and continuous monitoring of IS including security event log review and analysis
Provide support to the ISSM for maintaining appropriate operation IA posture for programs
Candidate must be a US Citizen and hold an active Department of Defense TOP SECRET/SCI clearance to be considered for this position
DoD 8570 IAT Level III certification or above required
5+ years of experience in Information Security, Information Assurance (IA), or Cyber Security programs
Bachelor’s degree in an Information Technology field and three years experience or seven years applicable work experience desired.
Deep understanding of Information Assurance frameworks and Federal information security requirements (NIST: 800-37, 800-53 and 800-171, and NIST Cybersecurity Framework)
Experience with Assured Compliance Assessment Solution (ACAS) highly desired
Experience with Host Based Security System (HBSS) highly desired
Experience with Risk Management Framework (RMF)
Self-starter with ability to work independently, collaboratively and customer service oriented
Bachelors or Equivalent in Information Systems or Other Technology
Alternate Location: US-Texas-San Antonio
Requisition # : 217306
This job may require successful completion of an online assessment. A brief description of the assessments can be viewed on our website at http://find.centurylink.jobs/testguides/
We are committed to providing equal employment opportunities to all persons regardless of race, color, ancestry, citizenship, national origin, religion, veteran status, disability, genetic characteristic or information, age, gender, sexual orientation, gender identity, marital status, family status, pregnancy, or other legally protected status (collectively, “protected statuses”). We do not tolerate unlawful discrimination in any employment decisions, including recruiting, hiring, compensation, promotion, benefits, discipline, termination, job assignments or training.
The above job definition information has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. Job duties and responsibilities are subject to change based on changing business needs and conditions.