Information Security Analyst

Information Security AnalystFort Lauderdale, Florida(Local Candidates Preferred - No relocation assistance provided)Summary:The Information Security Analyst provides business and technical advice on a wide variety of information security issues, concerns, and problems.  An Analyst makes sure that all business applications developed in-house or developed by 3rd party on behalf of Citrix Systems include adequate control measures.  The Senior Information Security Analyst is an in-house subject matter expert who diligently assists with the improvement of security on information systems at Citrix Systems.   Responsibilities:· Provides in-depth technical advice for investigations of information security incidents including internal frauds, hacker break-ins, and system outages· Assist with the documentation of information security incidents as well as the analysis of the circumstances enabling or permitting these same incidents to take place· Participates on a Computer Security Incident Response Team (CSIRT) that responds to various security incidents such as denial of service attacks, virus infestations, and internal frauds· Analyzes selected commercially-available information security products and services to determine which of these should be adopted by, or tested by Citrix Systems· Provides users and management with technical support on matters related to information security such as the criteria to use when selecting information security products (answers a wide variety of questions about information security)· Acts as a technical information security reviewer of requirements statements, feasibility analyses, operating procedure manuals, and other documents produced during the systems development process· Reviews proposals to significantly enhance or modify the configuration or functionality of intranets, firewalls, servers, applications, databases, and other important parts of Citrix information systems infrastructure· Provides special technical guidance to the Information Technology department staff about the risks and control measures associated with new and emerging information systems technologies· Acts as a technical resource to users, user department management, and others within Citrix Systems who are seeking more information about information security· Participates in, and act as a technical leader in, periodic information systems risk assessments including those associated with the development of new or significantly enhanced business applications· Reviews the cost-effectiveness and practicality of existing information security procedures and systems, and makes suggestions for the improvement of these same procedures and systems· Prepares and periodically updates draft information security policies, architectures, standards, and/or other technical requirement documents needed to advance information security at Citrix Systems· Interprets information security policies, standards, and other requirements in light of specific internal information systems, and assist with the implementation of these and other information security requirements· Assist with the selection, installation, and adoption of automated tools that enforce or monitor the compliance with information security policies, procedures, standards, and similar information security requirements· Designs, develops, delivers or oversees the delivery of, classroom training and/or other information security awareness programs (presentations, memos, etc.) for users, technical staff, and management· Stays informed about the latest developments in the information security field, including new products and services, through on-line news services, technical magazines, professional associations, industry conferences, training seminars, and other information sources· Participates as a technical advisor for a variety of ad-hoc information security projects that will be dictated by current business and technological developments· Provides mentoring and cross-training to other team members on security best practices Qualifications:· Focus is on multi-systems, technology. Applies advanced theories, principles, and concepts; demonstrates creativity and ingenuity; contributes to the development of new principles and concepts. Identifies and resolves complex problems involving technical issues across multi-disciplines. Typically develops new methods to apply to problems. Integrates a broad range of inputs into job performance; includes supervisor inputs, task and project requirements, and a range of multi-discipline theories and concepts Requirements:· BA/BS in Information Systems Management, Computer Science or related discipline with minimum of 7 years experience. In lieu of formal education, at least 10 years of related experience· Proven ability as a member of Information Technology Security team and the ability to communicate technical and security-related concepts to a broad range of technical and non-technical staff· Proven business skills including: effective oral and written communication, issue resolution, and self motivation· Excellent project management skills· Experience in the development of information security policies, intrusion response procedures, and administration of the operations of a security infrastructure· CISSP/SSCP preferred but not required· Experience with security standards such as ISO 17799, NIST Orange Book, Microsoft Site Security handbook, HIPAA Security Standards and Sarbanes Oxley requirements· Understanding of Firewalls such as Checkpoint, Cisco, etc. and Intrusion detection and prevention products and methodology as well as various user authentication products and methodologies including Microsoft Active Directory· Protocol & standards experience including TCPIP, SSL, S/MIME, Radius, LDAP, IPSEC & public key cryptography techniques· Experience with WLAN security protocols and tools, such as 802.1X, LEAP, PEAP, WPA, and VPN technologies Please apply online: http://careers.peopleclick.com/careerscp/client_citrix/external/gateway.do?functionName=viewFromLink&jobPostId=18865&localeCode=en-us   Company:   Citrix Location:   Fort Lauderdale, FL 33309 Status:   Full Time, Employee Job Category:   IT/Software Development Relevant Work Experience:   5+ to 7 Years Career Level:   Experienced (Non-Manager) Education Level:   Bachelor's Degree