
Information Security Analyst – Vulnerability Management at California Water Service
San Jose, CA 95112
About the Job
Our commitment to our employees is evident, as we have been named a Top Workplace in the Bay Area for nine years in a row and designated as a Great Place to Work®, and Cal Water was ranked “Highest in Customer Satisfaction Among Water Utilities in the West” by J.D. Power in its inaugural water utility satisfaction study.
The Information Security Analyst – Vulnerability Management plays a leading role in driving information security analysis and vulnerability remediation. This role is a key business enabler to provide information security risk analysis and strategic recommendations for the ongoing improvement of Information Security. The Information Security Analyst – Vulnerability will work with IT and other departments to promote secure practices and improve information security processes and policies. The position will be responsible for identifying vulnerabilities in a system and can implement security controls to eradicate and/or mitigate the exploit. The positions require effective verbal and written communication skills to provide good customer service. The position is located in San Jose, CA.
ESSENTIAL FUNCTIONS:
Performs Network and Web Application Penetration testing
Proficient with Qualys, Nessus, Metasploit, Armitage, Kali Linux, and other security tools
Analyze and vet vulnerabilities then validate vulnerabilities are remediated
Research 0 days and new security threats
Reduce vulnerability by improving remediation and patch management process
Capture network traces from exploits for testing IPS security effectiveness
Performs threat hunting, triaging, and reporting information security events
Ability to report and present findings to a non-technical audience
Assists with IT Operations request as necessary
Performs other similar duties as assigned
MINIMUM QUALIFICATIONS:
Bachelor’s degree in Computer Science, Information Systems or related field and/or equivalent relevant experience
Certified Information Systems Security Professional (CISSP), Certified Internal Systems Auditor (CISA), Certified Ethical Hacker (CEH) or other security certification required
Must have excellent written and verbal communication skills
Provide excellent customer service
Detail oriented
Ability to exploit recognized vulnerabilities
Solid understanding of OWASP top 10 and can defend against such attacks
Excellent cybersecurity concepts and methods including, but not limited to, vulnerability management, privacy, and incident response
Strong problem solving and troubleshooting skills with experience exercising mature judgement
Worked in a Red and Blue team environment
Solid understanding of “kill chain”
Excellent teamwork and interpersonal skills
Exhibit superior organizational skills to analyze, develop, and deliver detailed reports meeting tight schedules
Valid California Driver License
Required Knowledge, Skills, and Abilities:
Solid experience with ethical hacking and zero day attacks
Solid understanding of Metasploit framework and meterpreter
Knowledge and ability to evaluate, assess, and implement IT risk mitigation processes and procedures
Advanced knowledge of information security standards, rules, and regulations including International Organization for Standards (ISO) 27001, 27002, National Institute of Standards and Technology (NIST), and Defense Federal Acquisition Regulation Supplement (DFARS)
Knowledge of network, server, mobile devices, application, and database security principles for risk identification and analysis
Knowledge and ability to work effectively with auditors, customers, consultants, employees, and vendors
Demonstrated analytical and problem solving skills
Demonstrated time management and organizational skills
Flexible and able to prioritize work
Salary Range: $85,500 - $154,100
Deadline to submit resume is Monday, January 25, 2021.
The Equal Opportunity Policy of the Company is based upon the philosophy that all people should be treated fairly and with dignity. California Water Service, Hawaii Water Service, New Mexico Water Service and Washington Water Service do not discriminate against any applicant or employee because of race, color, religion, sex, national origin, or any other protected class. The Company makes all employment decisions in a non-discriminatory manner. EOE, VET, DISABILITIES.