Job Description:
Description
Company Overview
Shamrock Trading Corporation is the parent company for a family of brands in transportation services, finance and technology. Headquartered in Overland Park, KS, Shamrock is frequently recognized among the “Best Places to Work” in Kansas City and Chicago and was most recently recognized as one of America’s top 100 “Most Loved Workplaces” by Newsweek. We also have offices in Atlanta, Chicago, Dallas, Ft. Lauderdale, Houston, Laredo, Nashville and Phoenix.
With an average annual revenue growth of 25% over several decades, Shamrock’s success is attributed to three key factors: hiring the best people, cultivating long-term relationships with our customers, and continually evolving in the marketplace.
Responsibilities
The Security Analyst II will contribute to the information security team, providing security guidance and expertise to perform a variety of security responsibilities. The Security Analyst II will be heavily involved in the analysis of data extracted from various systems within the Information Security and IT environments. Responsibilities will include network security, Cloud security, threat hunting, auditing, ensuring compliance, assisting in various projects, presenting on Information Security concepts, and assisting in policy/procedure development. This role will conduct IT/Cyber Security investigations (hands-on work), as an individual, self-managed investigator, or in small project teams while implementing and overseeing information systems security standards.
- Work with tier II Technology staff to ensure security compliance and events are addressed.
- Assist in providing support to plan, coordinate, and implement the organization’s information security requirements.
- Evaluate security requirements and conduct feasibility studies to examine software requirements, administration costs, information flow, etc.
- Monitor logs for unusual or suspicious activity.
- Interpret activity and make recommendations for resolution.
- Logs include servers, workstations, firewalls, intrusion detection systems, 2-factor authentication systems, web application firewalls, data loss prevention systems, file integrity monitoring systems, anti-virus/malware systems, and security incident and event management systems.
- Provide support for various business units to identify their current security gaps.
- Assists in installation, functional and performance testing, maintenance, and modification of vendor supplied computer security products.
- Assist in the execution of IT Compliance functions including, policy/procedure development, monthly reporting, artifact extraction, control analysis, meetings with auditors, and review of emerging compliance requirements.
- Resolves routine computer security problems and coordinates the resolution of more complex computer security issues with assistance as needed.
- Demonstrates knowledge about common computer security applications software and can train customers and assist them in resolving computer security problems with assistance as needed.
- Perform investigations on desktops, servers, networks, and applications using a combination of automated and manual tools following a defined process with assistance as needed.
- Communicate findings from investigations to the business units and assist with tracking the resolution of identified findings.
- Working with computer security technical staff evaluates and makes recommendations regarding technological advances that move the business forward while limiting risk.
Qualifications
- Bachelor’s degree in computer science or equivalent work experience.
- Five years of related job experience in Information Systems security.
- Industry certifications – CISSP, CEH, GIAC, and equivalent
- Experience implementing IT security compliance requirements onsite and in the cloud.
- A strong understanding of securing various cloud environments.
- Knowledge of system security acquired through several years of direct experience or the equivalent.
- Knowledge of computer forensic and incident response methodology and techniques.
- Knowledge of common software applications including spreadsheets and word processing, and strong verbal, and written skills.
- Experience with implementing and managing Firewalls, IDS/IPS, SIEM, DLP, and other security tools.
- Strong ability to accurately estimate project development activities.
- An experienced understanding of OS hardening, vulnerability assessments, and compliance: PCI-DSS, NIST CSF, and CIS Controls.
- Solid understanding of Linux variants and Microsoft Windows.
- Experience using vulnerability scanning and attack tools.
- Understanding of endpoint protection controls.
- Experience in identifying and handling information security incidents.
- Experience creating technical documents, maintaining accurate records, prioritizing work, and analyzing problems to improve effective solutions.
- Ability to establish and maintain an effective working relationship with customers and other technical staff.
Benefits Package
At Shamrock we hire bright, ambitious people and give them the tools they need to be successful. By investing in training and development, we hope to become a long-term career for employees, where there are always opportunities for advancement. Shamrock also offers a premier set of benefits for employees and their families:
- Medical: Fully paid healthcare, dental, and vision premiums for employees and eligible dependents
- Work-Life Balance: Competitive PTO, paid leave policies, and eligibility for work-from-home opportunities after an introductory period
- Financial: Generous company 401(k) contributions and employee stock ownership after one year
- Wellness: Onsite gym, jogging trail, and discounted membership to nearby fitness center