Major Responsibilities:

Participates in monitoring, detection, analysis, resolution of security events and provides containment recommendation; analyzes alerts and logging. Assists in developing new triggers and reporting within Security Information and Event Management (SIEM) and log retention and management tools; adjusts filters and correlations to improve monitoring and reduce false positives. Performs routine discovery, network vulnerability scans, application vulnerability scans and penetration tests.  Reports on vulnerabilities and adjusts vulnerability scanners to reduce false positives as directed. Under the direction of senior staff, works with Information Technology (IT) and other stakeholders to remediate vulnerabilities or implement compensating controls.  Assists with monitoring the threat landscape to identify new threats to the environment and conducts reconnaissance to identify Aurora-specific intelligence. Assists with managing security incident handling efforts in response to a detected incident, and coordinates with other stakeholders as directed.   Assists with inventory of assets including networks, systems, devices and applications and their data classification. Supports the communication and enforcement of Aurora's Security policies and standards and assists in maintaining standard operating procedures, processes and guidelines. 

Licensure, Registration, and/or Certification Required:

None

Education Required:

Bachelor’s Degree (or equivalent experience) in Information Technology or related field.

Experience Required:

1 year in Information Technology security

Knowledge, Skills & Abilities Required:

Knowledge of IT Security Operations Centre, using SANS methodology. Basic understanding of Vulnerability Scanners, Application vulnerability scanners, and security Information Event Management systems, system and network security, and forensics tools.   Basic knowledge of networks, systems, devices and applications. Good troubleshooting, reasoning and problem solving skills.  Team player with strong customer service, prioritization and time management skills. Good organizational skills and the ability to work autonomously with a strong attention to detail and processes. Organizational skills and the ability to work autonomously with a strong attention to detail and processes. Ability in writing clear and concise technical documentation. Strong verbal communication skills and the ability to effectively interact with all levels. Ability to manage multiple priorities with tight deadlines in a dynamic work environment. Ability to adapt to changing technologies and learn new technologies.

Physical Requirements and Working Conditions:

This position requires travel, therefore, will be exposed to weather and road conditions.  Operates all equipment necessary to perform the job. Exposed to a normal office environment. 

This job description indicates the general nature and level of work expected of the incumbent. It is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities required of the incumbent. Incumbent may be required to perform other related duties.