Fortress Information Security

  • Principal Security Analyst

    Job Locations US-FL-Orlando
    Posted Date 4 months ago(1/10/2018 12:04 PM)
    Job ID
    # of Openings
    Cyber Security
    Regular Full-Time
  • Overview

    Fortress is a leader in third party risk awareness and management, offering a large suite of tools and services to its customers.  We are an exciting company that encourages collaboration and communication between team members.  Team members will be pushing the envelope on the newest threat intel.


    The Principal  Security Analyst is a member of the Security Service Delivery Team for Fortress Information Security.  These team members have hands on experience in cyber security and will have a strong back ground in multiple areas of security including: network, application, threat intel, vulnerability management, and pen testing.  This team member will work hand and hand with the Compliance Service Delivery Team to deliver exceptional quality and timely security information to Fortress’ customers.  Additionally this role includes team leadership responsibilities for cyber security service delivery.


    Other responsibilities include:

    • Perform daily checks of all services to ensure functionality
    • Leadership experience such as team lead, technical lead, or lead consultant experience
    • Interfacing with Fortress’ customers and their vendors to enhance their security posture
    • Prepare and document standard operating procedures and protocols
    • This position may work in shifts to support 24x7 customer operations
    • This employee shall maintain or assist in the maintenance of the confidentiality, integrity, and availability of all data in physical and/or electronic format



    The qualified individual for this role will have demonstrable experience in 8 or more of the following:

    • Tactical, operational, and strategic level threat intelligence
    • Validating information received from threat intelligence feeds to minimize false positives
    • Firewall implementation, troubleshooting, and operational maintenance including traditional stateful inspection firewalls, and next generation firewalls
    • Web application firewall implementation, troubleshooting, and operational maintenance
    • IPS / IDS systems, both with reviewing blocks and balancing block lists in high volume environments
    • Incident Response to including incident identification, investigation, response, recovery and data connectivity
    • Application whitelisting products both from an implementation and operational role
    • Centrally managed anti-virus products, both from an implementation and operational role
    • Centrally managed encryption products, both from an implementation and operational role
    • System and network forensics, chain of custody, and familiarity with legal process for submitting evidence to law enforcement
    • Application security, both in protecting and attacking applications (e.g. websites)
    • Penetration testing black or white-box engagements
    • Programming or scripting using Python, C, C++, Node, Bash, Ruby, and Java
    • In depth knowledge of Linux operating systems
    • Reverse engineering malware, especially analysis of malware via unpacking and debugging



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed