The Lead Security Analyst – Applications will be responsible for: AWS internal security strategy and controls; SSL/TLS/PKI standards, architecture, and processes; enforcing the security standards across all platforms and applications; and complying with requirements of external security audits & recommendations.
**ESSENTIAL DUTIES AND RESPONSIBILITIES:**
+ Ensures best practice security standards are followed at US Foods;
+ Advises project teams team on security best practices;
+ Develops vision for managing security controls within AWS environment, specially IAM controls across AWS services include VCP, Ec2, S3, etc.;
+ Manages security events, analyzes, troubleshoots, and corrects (either directly or indirectly) issue related to security incidents;
+ Management & support of firewall/UTM infrastructure;
+ Performs analysis of application security tool needs; contributes to design, integration, and installation of hardware/software;
+ Executes and reports on security events as found by SEIM solution, system or user reports;
+ Monitors security system logs (i.e., intrusion detection system, firewall system logs, etc.) and reports on discovered anomalies or problems (i.e. insufficient disk space, inappropriate access patterns, etc.);
+ Assists with security assessments for potential business partners;
+ Keeps fully abreast of trends and changing technologies related to information security fields;
+ Conducts violation / vulnerability report review; coordinates IT risk mitigation.
+ Investigates IT security violations, known vulnerabilities, and data breaches;
+ Performs vulnerability assessments; conducts compliance activities in response to internal and external audits;
+ Performs security research & vendor evaluations at the direction of the ITRM Security Architect; assists with testing and implementation of security solutions;
+ Maintains / enforces security policies and standards;
+ Acts as interface with and liaison to business and IT application owners; ensures applications, infrastructure components, and access are appropriately assessed;
+ Assists with security scans (vulnerability scans, static/dynamic code scans) and remediation of findings;
+ Assists IT Security Architect with IT security reviews and signoffs for new systems development projects;
+ Executes security incident response procedures in accordance with threat levels;
+ Monitors the schedules for upgrading, repairing, modifying, or replacing IT security systems, devices, and applications; monitors eCommerce-related processes and equipment;
+ Communicates effectively (both written and verbal);
+ Learns new tools and technologies quickly including identity management and next generation firewall technologies;
+ Manages multiple priorities and follows a project plan to meet project deliverables;
+ Able to work independently, engage leadership as needed, and be proactive in advancing US Foods security posture.
**# EOE Race/Color/Religion/Sex/Sexual Orientation/Gender Identity/National Origin/Protected Veteran/Disability Status
**_Policy on Third Party Unsolicited Resume Submissions_**
Any employment agency, person or entity that submits a résumé into this career site or to a hiring manager does so with the understanding that the applicant’s résumé will become the property of US Foods. US Foods will have the right to hire that applicant at its discretion without any fee owed to the submitting employment agency, person or entity.
Employment agencies that have fee agreements with US Foods and have been engaged on a search shall submit résumé to the designated US Foods recruiter or, upon US Foods authorization, submit résumé into this career site to be eligible for placement fees.
+ Bachelor’s Degree (preferred);
+ CISSP certification (preferred).
+ 5 years’ experience in information technology;
+ Recent direct experience in implementing security for applications, databases, and networks;
+ Prior experience securing various operating systems in a corporate environment (i.e., Windows, Unix);
+ Prior experience evaluating application vulnerabilities and recommending remediation.
**Specialized Knowledge Needed for Performance of Job:**
Direct experience managing one or more of the following:
+ AWS Security;
+ Certificate Management and Certificate Authorities;
+ Next Generation Firewall or Unified Threat Management solutions;
+ Vulnerability management solutions;
+ Identity and Access Management;
+ Vulnerability Management Solutions.
+ Direct experience managing one or more of the following:
+ Amazon Web Services Security, SSL & PKI, LDAP, Active Directory, and PowerShell;
+ Experience with Next Generation Firewalls or UTM;
+ Familiarity with SIEM Solutions such as QRadar and Vulnerability management solutions such as Tenable Nessus;
+ Experience with PCI is a plus.
**Primary Location:** Rosemont-IL
**Schedule:** Full-time **Shift:** Day Job
**Job Function:** Systems Admin/Security
**Job Level:** Individual Contributor
**Travel:** Yes, 20 % of the Time
About US Foods
Why US Foods? As one of America’s top 10 largest private companies, we offer talented professionals outstanding opportunities for personal and professional development. We maintain a strong focus on growth in a high-performance environment. That means your work will be challenging and rewarding. We conduct business in a highly ethical manner and maintain an unwavering commitment to operational excellence, safety, and environmental responsibility. As important, we encourage collaboration and value each member of our diverse and talented team.