Order Online
Search
NYSE
 

SECURITY ANALYST III

Apply Now    
Job ID:
R16258
Location:
Veritiv - Norcross Office
City:
Norcross
State:
GA
Veritiv has an expansive North American network with more than 180 locations, and we do business with
more than half of the Fortune 500. We're a big company, but we’re also a new company, shaping our
systems and processes to support a successful and sustainable future. We don't just encourage an
entrepreneurial spirit, we embody it.
Are you looking to join a company where you feel empowered in your work and your job is not just a job,
but a path toward a rewarding and successful career? Do you want to be part of a company that
customers and suppliers not only want to do business with but need to do business with?
If you answered yes, then Veritiv might be the place for you. We encourage you to learn about and apply
to Veritiv if you seek a unique work experience, where diverse ideas are met with enthusiasm, and where
you can realize your full potential.

Position Description

Job Summary:

As part of the IT Security team, this role will perform tasks related to the operational side of security.  Person will support the IT, HR and Legal departments by helping define and maintain operational and compliance security procedures and policies.  Position will be responsible for overseeing the acquisition of requested information for these and other departments.  Person will be responsible to make sure Security systems are in working order and that all security threats are addressed.  Person will help in the definition and maintenance of operational and compliance security procedures and policies.

Job Responsibilities:

  • Oversees administration of all security devices for enterprise operational security
  • Develops plans for implementation  of new security related technologies
  • Determines and maintain an inventory of all regulatory, commercial and organizational technology compliance requirements (PCI, SOX).
  • Facilitate the creation and modification of all technology compliance policies.
  • Member of Change Control Review Board
  • Leads the development of information security strategies, conducting security assessments, and implementing security solutions to assist businesses with the assessment and improvement of their security infrastructure.
  • Achieves system security operational objectives by directing information and recommendations to strategic plans and reviews; preparing and completing action plans; implementing production, productivity, quality, and customer-service standards; resolving problems; completing audits; identifying trends; determining system improvements; implementing change.
  • Protects computer assets by developing security strategies; directing system control development and access management, monitoring, control, and evaluation.
  • Leads team that administers the enterprise anti-virus / anti-malware solution, web proxy solution, enterprise SSL certificates and Windows Certificate Services (PKI) certificate infrastructure.
  • Approves all firewall rule changes and validates they were implemented properly by the MSS.
  • Establishes system safeguards by directing disaster preparedness development; conducting preparedness tests.
  • Develops security awareness by directing development of orientation and training programs; counseling clients.
  • Advises senior management by identifying critical security issues; recommending risk-reduction solutions.
  • Partner with various internal company departments to provide internal security consulting for various corporate initiatives.
  • Conduct forensic analysis of corporate assets to provide Management, Human Resources, Legal, or others (as approved) with requested information to address business continuance and/or litigation needs.
  • Process security questionnaires submitted by potential company partners or company clients

Experience/Education:

Must Have:

  • Excellent oral and written communication skills.
  • Ability to interact and work with individuals at all levels within the company (end user to executive).
  • Ability to work multiple issues of a diverse nature simultaneously, providing resolution in a timely manner.
  • Ability to coordinate and lead various IT Security team related initiatives.

Desirable:

  • Bachelor's or Master’s Degree in IT Security or Computer Science/Business or equivalent demonstrated capability through previous experience and education to perform job responsibilities
  • Possession of standard certifications in Information Security (CISSP, CEH, CCGEIT, CRISC, CISM, CISA) and/or vendor-specific certifications would be a plus

Skills and Knowledge:

  • 8-10 years working as a member of a security operations team for a medium to large sized company.
  • At least 5+ years’ experience managing compliance assessments within a corporate setting.
  • 3-5 years developing IT Security policy.
  • 3-5 years working with MS Windows / Unix system administration
  • 3-5 years working with network and firewall administration.
  • 3-5 years administering the McAfee ePO, web proxy and anti-virus/anti-malware solutions
  • 3-5 years working with LogRhythm toolset.
  • Working knowledge of the Encase forensic toolset.
  • Conduct vulnerability/security assessments
  • Ability to travel 25%


Veritiv is an Equal Opportunity/Affirmative Action employer. Individuals seeking employment are considered without regards to race, ethnicity, color, creed, religion, sex, sexual orientation, marital status, age, disability, gender identity or expression, genetic information, national origin, protected veteran status or any other classification protected by law. Additionally, Veritiv will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with Veritiv’s legal duty to furnish information. If you would like more information about your EEO rights as an applicant, please click here:http://www.eeoc.gov/employers/upload/poster_screen_reader_optimized.pdf

http://www.dol.gov/ofccp/regs/compliance/posters/pdf/OFCCP_EEO_Supplement_Final_JRF_QA_508c.pdf

Apply Now