Security Analyst

Background: The Technology Services (TS) department of the Wayne County Airport Authority is responsible for providing and managing the Airport Authority’s technology needs for both Detroit Metro and Willow Run airports. This includes ensuring that the Airport Authority is continuously able to protect the confidentiality, integrity and availability of its computer systems, networks and information. This is accomplished by monitoring and/or administering information security related applications, technical security controls and established Technology Services security policies and procedures. The successful candidate must have a business focus with a technical understanding of operational security.

Scope of Services: Technology Services is seeking a qualified, full-time candidate who will utilize their knowledge and expertise to:

• Protect data and information systems against unauthorized access, modification, or destruction.
• Maintain and monitor data security.
• Manage network, intrusion detection and prevention systems.
• Respond to and analyze security incidents.
• Perform security awareness training.
• Prepare status reports on security matters to develop security risk analysis scenarios and response procedures.
• Responsible for the tracking, monitoring, and resolution of security incident tickets.
• Audit and report on user accounts and access permissions
• Provides direct support to the business and IT staff for security related issues.
• Recommend and implement appropriate cybersecurity tools and countermeasures.
• Assist in the development and documentation of security procedures and business continuity plans.
• Perform internal vulnerability security scans, monitor Web Portal from support services that conduct monthly external network vulnerability scans, analyze report data and create, assign, and monitor technical service tickets to responsible technicians for the address and remediation of any discovered vulnerabilities.
• Coordinate and participate in the administration of Disaster Recovery and Business Continuity plans and tests. Track, report, and document results.
• Participate as a member of the Technology Services Cyber Incident Response Team (CIRT). Analyze data and incidents and develop reports and brief on findings,
• Maintain an advance knowledge set of current PCI-DSS requirements. Monitor controls and practices to assure of continuous alignment to PCI-DSS Compliance. Assist the Technology Services Security Manger in annual PCI-DSS Attestations.
• Performs third party IT security risk assessments to identify control gaps, recommend mitigation approaches and risk conclusions.
• Deep knowledge and applicability of common IT governance frameworks (i.e., NIST800-53; CISA)
• Ability to collaborate with campus partners to discuss identified IT-related security risks.
• Oversees IT Risk Register including tracking risk mitigation activities and generating monthly reports.
• Maintains and updates IT Security policies repository including related standards, procedures, and processes.
• Familiarity with cloud security compliance requirements
• Supports the cyber awareness training and education program, including phishing simulations.

Minimum Qualifications

The successful candidate should have a broad business background, good interpersonal communications skills and a thorough understanding of information security practices. For consideration, the candidate must meet the following minimum qualifications:

• 1-3 years’ experience in information systems security.
• Familiarity with security threats involving devices, networks, and systems as well as solutions that prevent, detect, and respond to those threats.
• Familiarity with current cybersecurity technologies such as firewalls, proxies, network and host-based intrusion prevention, data loss prevention, vulnerability assessment, security information/event management, endpoint security, anti-virus/anti-malware, etc.
• Familiarity with security intelligence and research methods.
• Knowledge of Information Security best practices.
• B.S. in Computer Science, Engineering, Information Systems, or equivalent experience preferred.
• Operational knowledge of web/email applications and their potential vulnerabilities.
• Operational knowledge of operating systems and their potential vulnerabilities.
• Experience evaluating third-party IT security risk assessments, information security risk governance frameworks (i.e., NIST) and recommend mitigation approaches.
• Experience in tracking, monitoring, and reporting on IT security risk and control issues.
• Ability to evaluate technical details as inputs for management level reporting.

Expected Engagement Duration: 6 months with possible extension or direct hire