Shentel (NASDAQ: SHEN) is a regional telecommunications company successfully providing a broad range of telecommunication solutions for over 110 years. Shentel is committed to enriching the lives of the customers we serve with the highest quality telecommunication services by making major investments in technology easy. It is our vision to provide rural communities with access to the same level of telecommunications services as those found anywhere else in the US. With operations in multiple states, we provide our customers with wireline and wireless telephone, Cable TV, and internet. In addition Shentel is proud to be an affiliate of Sprint. We own and operate the more than 1000 towers that support our wireless network and employ the teams who work in our 48 Sprint stores, provide customer service, and operate the wireless network. We are looking for dedicated people with professional attitudes who take pride in providing superior customer service, closing sales and driving success of all of the facets of our business. We're Shentel. Always connected to you. Shentel is an Equal Opportunity Employer and a Drug-Free Workplace.
Responsible for analysis of information security systems, cyber security policy development, endpoint and server security breach prevention, web and server vulnerability identification / prevention / remediation, simulated Purple Team attack exercises, and software risk assessment analysis. Analyst would be lead on monitoring compliance with all security policies and standards. This job is best suited for candidates who enjoy and have experience with computer, server, and network peripheral information security as well as candidates who excel at thinking critically to find new ways to resolve security challenges.
II. Duties and Responsibilities:
a. Monitoring, investigation and reporting of security incidents. Member and support of the Incident Response Team.
b. Coordinate and perform internal as well as external penetration tests, application as well as network vulnerability assessment scans, and security risk assessment reviews.
c. Ability to develop and analyze processes. Identify as well as detail information risk, governance and compliance concepts and principles. Monitor, evaluate, and advise on information security issues related to systems, data, network, and workflow to ensure security controls are appropriate and operating as intended.
d. Work with a set of guidelines to help identify critical event data for additional analysis and escalation as appropriate
e. Assist in the implementation and ongoing support of security systems.
f. Develop and document security architecture and plans, including strategic, tactical, and project plans
g. Conduct security research in keeping abreast of latest security issues.
h. Always observes all organizational procedures from a security risk perspective. Reports security risk concerns to appropriate leadership as defined in the incident response plan.
i. Liase with internal team members, external vendors, external consultants, and external contractors in a professional manner while performing software onboarding, professional services, and/or security assessment activities.
j. Stewardship of the brand to include embodiment of the Shentel Way by ensuring appropriate use of the brand (name, logo, company, appearance, and attitude) within their respective team and organization.
k. Performs other duties as assigned.
III. Qualification Requirements:
a. Education: Bachelor’s Degree with a focus of information, application, and network security or equivalent experience.
b. Experience: 5 to 10 years’ experience in network, application, and information security.
c. Certification or Licensing Desired: CISSP, GIAC, CISA
a. Strong analytical skills required. Identify detail information risk, governance and compliance concepts and principles.
b. Ability to develop and analyze processes.
c. Must have excellent verbal and written skills.
d. Ability to review reports and system activity logs to correlate and identify critical events, categorize according to priority, and escalate as appropriate
e. Applicable knowledge of Information Technology, Information Security program maturity and domains, networking fundamentals, and data management concepts
f. Strong understanding of governance, risk, and compliance frameworks such as NIST and CIS.
g. Knowledge of Windows and Linux systems, Active Directory Architecture, EDR, data governance, vulnerability management, SIEM systems, and Information Security compliance, standards, and regulations.
Shentel provides a drug-free workplace and is an EEO employer. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex (including sexual orientation and gender identity), national origin, disability, or protected Veteran status.
If you require accommodation or assistance to complete the online application process, due to a medical condition or impairment, please contact a HR Representative at 540-984-5241 or email@example.com. When you contact a HR Representative please identify the type of accommodation or assistance you are requesting. We will assist you promptly.