SECURITY ANALYST - FIREWALL

TDS' reliable, high quality products and responsive customer service don't just happen by accident. They happen as a result of the creativity, dedication, talent, and professionalism of every member of our TDS team. Every day, TDS' 2,700+ employees dedicate themselves to exceeding customer expectations and earning customer loyalty. 'Delighting Customers' are not buzzwords at TDS; they're part of our company's mission.Telephone and Data Systems, Inc. [AMEX: TDS, TDS.S], the parent company of TDS Telecommunications Corp., earned a ranking of 478 on the 2008 Fortune 500® list of the nation's largest corporations. The company was also ranked at number 12 on Fortune's list of the 50 fastest growing companies according to one-year profit growth.Employment at TDS is subject to post offer, pre-employment drug testing. EEO/AAP EmployerThe Security Analyst - Firewall is responsible for the continuing development, implementation, support, facilitation and communication of the Information Security Policy within all areas of the business with a keen focus on network perimeter defense. Assist with support of existing firewall platforms to ensure stability, uptime, and security. Performs on-going monitoring of networks and network elements, both internal and customer-facing, to ensure compliance with policy and standards. Identifies areas of security risk to the organization, and works with company personnel to mitigate those risks to an acceptable level. This includes supporting, developing and planning systems to enable analysis and reporting of security events and activities, both system and network. Acts as a consultant on projects that have security implications and performs compliance monitoring reviews in high-risk areas. Assists in security-related investigations and incident response activities and provides system forensics and investigative services. In addition, provide periodic 'on-call' support of firewalls during non-business hours.Firewall and VPN Administration: Develops, documents and executes procedures to administer and test network firewalls Conduct firewall policy reviews for audit and inventory and executes changes where appropriate. Perform troubleshooting and network traffic analysis to diagnose and resolve problems. Assist with decommissioning, migration or installation of equipment Evaluates environment and recommends necessary improvements.Security monitoring: Works with infrastructure custodians to set appropriate system monitoring and logging parameters; executes on-going review of these logs. Develops, plans, and supports systems to enable analysis and reporting of security events and network activity as required. Monitors systems and devices for compliance with security and regulatory requirements, evaluates activity logs, and documents actions taken to investigate and resolve any identified issues. Conducts research on security topics and develops tools to assist security team activities.IS Security Program Design/Planning/Development/Integration and Process Development: Maintains advanced knowledge of computers and computer network systems current and future features/functionality to provide basis for security planning and risk mediation. Creates and formalizes information security procedures used to meet the objectives of the information security policies. Assists in research and testing of new technologies from a security perspective as required, and as driven by the business or regulatory needs. Measures and reports systems security improvements.Designs and manages information security standards: Works with IS, NS, and TDS Corporate to define standards that meet regulatory requirements and support the spirit of the Information Security policy. Identify and evaluate security risks within the company. Recommends the implementation of the information security standards to the applicable areas. Design and update, as needed, information security standards consistent with the IS Security Policy. This requires working with various departments (e.g., Network Services). Work with company management and personnel to mitigate risks in a timely manner. This includes recommending implementation of applicable security standards.Consulting services: Consults with project teams and IS management in the development of requirements to maintain security while meeting business objectives. Participates in projects to assess risk and to ensure that information security requirements are included in the project business case Provides information security consulting services to intra/inter-departmental projects and customers Provides root cause analysis and expert problem resolution Works directly with IS, NS, and TDS Corporate to ensure that TDS Telecom's technical infrastructure is adequately secureIncident response: Assists with root cause analysis, expert problem resolution, and de-brief activities, including executive communications as required. Security investigations and special requests: Works on behalf of Human Resources to collect information (e.g., emails, internet activity) and investigate information security violations. Works with other technical areas to complete requests, as needed. Performs systems and network forensic investigations as needed. Performs root cause analysis as required. ollows established forensic principles for evidence seizure, computer forensic analysis, and data recovery. Gathers and analyzes data in a manner as free from distortion or bias as possible to reconstruct data or what has happened in the past on company systems.Required Qualifications: Degree in Engineering, Telecommunications or Computer Science -OR- 2+ years related professional work experience. 2+ years of professional IT work experience.Other Qualifications: Knowledge of network protocols, data flows, and vulnerabilities within a TCP/IP environment Ability to perform network protocol analysis and raw data capture Ability to implement, maintain, and monitor High Availability Firewall configurations. Experience using Linux/Unix-based firewalls (IPTables, IPFilter, PF) Knowledge of VPN implementations (IPSec and SSL) using Cisco, NetScreen or Aventail devices. Experience in the monitoring and administration of IDS and/or IPS implementations. Experience with current Enterprise/Carrier-class firewall platforms (Cisco PIX/ASA, Juniper Netscreens, Fortinet, SecureComputing/Cyberguard, Checkpoint, etc). Familiarity with network security assessment tools (e.g., Nessus, nmap, netcat, nbtscan, Wireshark, kismet, Snort, metasploit, etc) Working knowledge of dynamic languages (one or more of the following) such as JavaScript, perl, python, php, tcl, VBScript, ruby, shell Excellent knowledge of MS Windows, Linux, UNIX, or mainframe computing technologies and architectures. Extensive knowledge of the Internet and networking concepts underlying the above systems (UNIX, SMTP, POP, DNS, etc) Familiarity with remote access systems, VPN solutions, and other encryption technologies. Experience with performing security investigations and electronic forensic analysis. Systems and network auditing and monitoring experience. Knowledge of the security concepts behind the AAA (authentication, authorization and auditing) framework. Extensive knowledge of IT processes and standards and the ability to consistently follow and enforce their use in all work. Excellent knowledge of file systems, networking architectures and protocols. Excellent knowledge of the network hardware including wireless, routers, firewalls, modems, and hubs. Strong human relations skills to interface with managers and staff at all levels within the organization and to deal with vendors and in-sourced providers. Excellent project management skills (organization, leadership, etc). Must have the ability to understand a business need and provide security requirements. Ability to plan, organize, motivate, and direct the testing of emergency response and recovery support teams. As the needs of the business dictate, perform tasks outside normally scheduled business hours to complete project work, provide on-call support and/or implement scheduled changesBenefits:As a part of your total compensation, TDS provides a comprehensive, competitive benefit package. The benefit plans address both the immediate and long term needs that you and your family may have. Here is a sample of what we have to offer for full-time employees.Insurance: Medical, Dental, Vision, and Life Insurance - Eligible ImmediatelyPaid Time Off: Vacation, Personal Time, Sick Time, and HolidaysInvestments: 401K - Eligible Immediately, Pension, Employee Stock Plan, and Flexible Spending AccountsAdditional Benefits: Education Assistance, Telephone and Internet Concessions, and Personal Computer Purchase ProgramOther: Extensive Training Program and Recognition Programs Employment at TDS is subject to post offer, pre-employment drug testing. TDS is an EEO/AAP Employer.