Lead Network Security Analyst (NJ, MD, GA & KY)

Lead Network Security Analyst

Will consider candidates from the following I.T. Campus locations:  NJ, MD, GA & KY

We’re the obstacle overcomers, the problem get-arounders. From figuring it out to getting it done… our innovative culture demands “yes and how!” We are UPS.  We are the United Problem Solvers.

About Architecture, Planning & Strategy at UPS Technology:

Our teams look at the overall company goals and use their skills and strategic thinking to build the strategies that allow these goals to become a reality. If you join our team, you will be involved with developing these strategic plans while also setting standards and developing roadmaps for the future state of our enterprise. We have the business savvy paired with the technical know-how to ensure we continue our innovative and competitive culture.

About this role:

The Lead Network Security Analyst performs a broad range of complex technical and professional work functions to identify, investigate, analyze, and remediate information security events. He/She leads security administration and service operations' functions to ensure enterprise integrity against technical and physical risks. This position determines the effectiveness of security controls, identifies risks and control gaps, and communicates areas for process improvement and solutions through the security governance process. He/She guides and trains colleagues to increase skill sets and knowledge. This position supports the network security architecture and infrastructure for LAN, WAN, and Cloud solutions. He/She performs capacity, resources, and contingency planning to manage the risks of network security failure and to ensure appropriate service levels are maintained. This position assists with the installation of network security devices (e.g., firewalls, UTMs, and DDoS appliances for local and remote locations, etc.). This position leads work functions to ensure appropriate resource allocation. He/She maintains current knowledge of developing technologies and applications. This position leads the development and maintenance of business continuity planning, data, systems, and network security for systems and controls related to their job duties.

Job Duties and Responsibilities:

Assesses Risks and Manages Information Security Controls

Assesses risks to I.T. systems’ availability, integrity, and confidentiality to ensure security and service continuity. Provides guidance for information assurance strategies to manage identified risks. Performs or participates in security risk assessments, business impact analyses, and application accreditation assessments to maintain compliance of information systems and to support the achievement of business. Identifies industry best practices, standards, methods, tools, and applications to optimize UPS’s business risk management. Analyzes security audit findings and recommends changes to improve the adequacy and effectiveness of security policies, best practices, procedures, and security control environment. Evaluates Customer security requirements to ensure they can be met and identifies need for additional security controls and safeguards to meet requirements.

Leads Service Design and Transition Management

Drafts, maintains, and implements policies, standards, and procedures to manage service component capacity. Reviews service level agreement (SLAs) details to identify capacity and performance issues and to specify required changes. Creates monitoring strategies and leads infrastructure systems and components planning, design, and improvement to ensure system availability and to meet business needs and quality standards. - Creates and manages plans, processes, and testing for infrastructure systems and components disaster recovery to ensure reliable and effective backup and restoration procedures. Manages configuration activities to verify requirements and instructions are complete, current, and accurate. Oversees investigation and implementation of tools, techniques, and processes to manage configurations and to create efficiencies. Manages the analysis of business requirements to convert into a forecast and budget plan for applications. Tracks budget plan-to-actuals to identify variances and tuning opportunities. 

Interfaces with Colleagues, Stakeholders, and Teams

Mentors colleagues and provides guidance to teams to resolve security and business issues. Establishes team objectives, delegates responsibilities, and oversees others’ work to allocate resources and ensure work completion. Provides training for team members to increase awareness and knowledge of emerging technologies and applications. Communicates identified areas for process improvements and solutions to inform and advise colleagues. Develops and presents technical and business solutions to facilitate process improvements. Participates in Support on-call rotation to troubleshoot security controls and firewall implementations. Serves as liaison with security vendors and application teams.

Influences and Leads Problem Management

Investigates, resolves incidents and problems with systems, performance, and services and develops reports to summarize findings. Compiles incident and problem documentation to meet reporting requirements. Leads and manages team resources to provide appropriate support coverage. Manages vendor support agreements, resources, and cases to ensure timely resolution of problems. Identifies technical alternatives and makes recommendations to address problems. Manages problem-solving and root cause analyses to ensure timely resolution of problems.

Manages Information Security Projects

Manages Information Security project life cycles to see projects from beginning to end. Creates, prepares, and maintains project plans to estimate resources, plan schedules, define goals, establish metrics, assess risks, and develop cost plans and to provide stakeholder reports. Provides status communications for senior management on issues, concerns, and risks to recommend solutions and to ensure products meet customers' needs. Monitors assigned resources to continuously manage team productivity, project timelines, and deliverables. Balances multiple projects and deployment schedules to meet stakeholder goals and expectations. Manages the change control procedure to ensure project deliverables are formally reviewed, completed within planned cost and timeframe, and closed.

Professional Experience/Skills:

• Must possess five or more years of demonstrable, professional, Information Security management experience and seven or more years IT experience and the following professional skills
• Technical Skills - Very strong technical, analytical, and troubleshooting skills including ability to analyze a problem/project quickly and accurately. Strong knowledge of network protocols, TCP/IP fundamentals, Linux and Windows operating systems, network, system, and data analysis techniques
• Knowledge of Cloud Network Security Engineering /Analysis and Security Controls Frameworks
• Experience with Technology Networks and Network Security Engineering 
• Knowledge of Incident Response/Crisis Management Exercising and Critical Security Controls Knowledge/Analysis
• Business Leadership – Experience in managing multiple stakeholders, both internal and external
• Project Management - Ability to lead projects from inception through completion
• Influencing - Ability to inform, and educate key stakeholders on priorities and risks in specific agreements or assurance efforts
• Analytical creativity and problem-solving skills, focusing on driving and achieving results in timely fashion. Ability to multitask concurrent work efforts
• Confidentiality - Ability to maintain confidentiality is required
• Strong verbal and written communication skills
• Strong planning and organization skills as well as customer service skills
• Demonstrated ability to take initiative, action and exercise discretion when needed
• Bachelors degree in Information Assurance or Risk Management, Cyber Security, Information Systems, or related field or the equivalent in education and work experience.

Industry Certifications

(Must possess one or more of the following or be able to obtain and maintain one or more within twelve months if currently not certified)

• CISSP, CISM or other Information Security related certifications

This position offers an exceptional opportunity to work for a Fortune 50 industry leader. If you are selected, you will join our dynamic technology team in making a difference to our business and customers. Do you think you have what it takes? Prove it! At UPS, ambition knows no time zone.