Information Security Analyst

OVERVIEW OF VULCAN MATERIALS COMPANY

Vulcan Materials Company is the nation’s largest producer of construction aggregates and a major producer of aggregates-based construction materials including asphalt and ready-mixed concrete. We run our business with great discipline and integrity.

At Vulcan, our people share a competitive drive for excellence, in an environment of trust, teamwork, positive reinforcement, open-mindedness and communication.

Ours is a culture of mutual respect, integrity and committed spirit. Opportunity, community and unity is our way of doing business. We call it The Vulcan Way.

SUMMARY DESCRIPTION:

The Information Security Analyst position works within the company’s Information Security department and reports to the Manager of Information Security. In this role, the Security Analyst is expected to work collaboratively with peers in the Security department and key IS support functions. This position will also work closely with critical third party companies providing security services. The nature of the work expected in this role requires the skill sets of a technology generalist. The position will work on any or all of the three main responsibilities of the Information Security group:

• Endpoint and server discovery, patching, security, and malware protection
• Network security monitoring which includes network, server, and endpoint security instrumentation and logging, logging infrastructure, and implementation and administration of the planned security information and event management system (SIEM)
• Threat analysis to include SIEM and Managed Security Service alert triage, Help Desk incident triage, threat intelligence, and possible forensics.

 All Information Security department staff are expected to actively participate in incident response events - a key deliverable for the group.

This position may also participate or lead the following: Security self-assessment to including vulnerability scanning, penetration testing, and configuration monitoring; Identity and privilege management; Web and cloud security; Perimeter security including network firewalls and virtual private network (VPN) devices; Application and API security.

Candidate must have excellent verbal and written communication skills and be able to function well in an enterprise environment working with technical peers and the business.

EDUCATION, EXPERIENCE, SKILLS REQUIRED:

1.  Bachelor’s Degree in information technology, electrical engineering, or computer science or equivalent experience required.
2. 2+ years’ experience with Microsoft desktop and/or server operating systems computer support and patching.
3. Experience and demonstrated strength implementing and supporting enterprise wide technology solutions
4. Experience with antivirus, firewalls, and other endpoint security measures.
5. The ability to troubleshoot a system or network fault or incident.
6. Experience performing project management duties and performing meetings effectively
7. Experience in the following will be considered a plus but not all items required:

• Formal education in security fundamentals and practices
• Security certification (CISSP, GIAC) and familiarity with CIS, NIST, ISO and other security standards
• Knowledge of intrusion detection (deep TCP/IP knowledge and security), various operating systems (Linux, OSX, Android, iOS), web technologies, and forensics.
• Experience with threat management tools such as ThreatConnect, AlienVault OTX, VirusTotal.
• Experience with logging tools such as syslog, Splunk, and Splunk SPL query language.
• Experience with network analyzer tools such as Wireshark, TCPDump, or similar.
• Experience with vulnerability scanning and discovery tools such as Nessus, Nmap and similar.

KEY RESPONSIBILITIES:

Key responsibilities will fluctuate based on current security risk considerations and project commitments for the department.     A sample of the likely key responsibilities can be found in the summary description above.  

PERSONAL ATTRIBUTES:

1.  Adaptable to change with regards to assigned tasks and skill sets needed to address the security risk faced by the company.
2. Good written and verbal communication skills to keep teammates, internal customers, management and vendors informed of the status of projects, testing, or incidents
3. Comfortable not achieving perfection, but obsessed with quality and achieving meaningful result.
4. Possesses a sense of urgency
5. Natural collaborator with peers to achieve the mission of the department 
6. Able to work in highly stressful situations and gather input real time and make thoughtful decisions in a decisive manner.

BENEFITS

Vulcan Materials Company offers a competitive compensation program and benefits package including: medical/dental/vision, paid holidays and vacations, life insurance, 401(k) with match and flexible spending accounts.

Vulcan is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy), sexual orientation, gender identity, national origin, age, disability or genetics, protected veteran status, or any other characteristic protected by law from discrimination.