Requisition ID 6574
Full/Part Time Full-time
Location
Boise

ID
Description

SUPERVALU is a premier food and drug retail powerhouse with world-class supply chain and support services. We are the nation’s third largest grocery provider, with a diversified portfolio of regional retail banners, locally managed and branded, spanning the nation, coast-to-coast and border-to-border. As the largest food distributor to retail stores in the United States, we also provide a robust suite of supply chain services to serve both our own retail banners and thousands of independent retailers.

Combined, SUPERVALU’s two lines of business provide a wealth of diverse opportunities to grow and to contribute to a thriving enterprise

Our Philosophy:

Ongoing pursuit of excellence is a way of life at SUPERVALU and a key to our success. To achieve excellence, we seek associates who will contribute innovative business solutions. We embrace change and welcome others who do.

Our employees are as diverse as our opportunities - representing all ages, backgrounds and parts of the country. What they have in common is: talent, passion, sense of urgency, focus, standards, integrity - and an unsurpassed customer orientation. They form the foundation of our SUPERVALU Advantage - the key to our continuing success.

Title: Technical Analyst II or III (Protection Services – SIM)



Location: Boise, ID or Eden Prairie, MN

PRIMARY FUNCTION

Works as a member of the SUPERVALU security incident monitoring and management team to identify and minimize threats to the business environment. Works in partnership with various IT and functional business areas to drive toward Information Security improvements, provide security support, and partner with teams of all areas responsible for IT service delivery to ensure a secure implementation of technologies throughout the enterprise. This position will require significant understanding in at least one of the following: Intrusion Detection/Prevention, Security Monitoring and Incident Response realms of Information Security.



RESPONSIBILITIES



· Perform incident response/management functions including, but not limited to, pre-incident preparation and training, incident detection, containment, eradication, and recovery

· Monitor and assess activity and events from intrusion detection/prevention systems, other security technologies, and log data collected from throughout the enterprise to identify new threats and incidents

· Provide an emergency response capacity in the event of an information security incident, including liaison with other SUPERVALU technology and business teams

· Configure, tune and optimize intrusion detection/prevention systems, security event/incident management systems, and other security technologies

· Review and identify root causes of security incidents, develop corrective actions, reassess inherent risks and drive toward future proactive/preventive actions

· Coordinate with forensic investigations, where appropriate, as part of the incident management process

· Perform information security training and mentoring to other members of the technology department within the organization

· Assist with vulnerability/risk management functions including but not limited, to vulnerability assessments, penetration testing, vulnerability remediation and compliancy testing

· Provide administrative and engineering functions within the Information Security department

· Continually seek to improve upon current policies, procedures, and processes within the organization

· Provide input to security-related tools and technology currently deployed or being evaluated

· Train and mentor other members of the Information Security team

· Perform equally effectively in both reactive and proactive security models

· Assess complex situations and recommend current and future state resolutions

· Operate in various roles within the team, at times in a leadership capacity and more frequently as a supporting role. Work is primarily self-directed or with limited direction from senior members of the Information Security team.

· Participate with management and decision-makers in the development and achievement of team objectives and goals

· Identify training needs and develops materials based on assessments or incident analysis

· Provide security consulting for all areas of the company

· Perform other Information Security tasks as required to meet business requirements







JOB REQUIREMENTS

Education, Certification, and Relevant Experience:

· Bachelor’s degree in Computer Science or a related discipline and at least 2-4 years relevant work experience

· Preferred work experience in incident response/management

· Excellent written and verbal communication skills, strong customer focus and demonstrated ability to work in geographically dispersed teams

· Must have security experience in more than two of the following environments, to provide security requirements and best practices for: network infrastructure, mainframe, Unix, Linux, Windows Active Directory, Databases (DB2, Oracle, SQL, Teradata), Applications, Web Servers and other security tools used in the various environments

· Demonstrated ability to recognize known intrusion techniques is desired

· Ability to manage competing priorities

· Must have a proven Information Security skill set

· Ability to lead meetings and activities by effectively communicating concepts, systems and procedures

· Effectively communicates concepts, systems and procedures in a training environment.

· Demonstrates the ability to influence or persuade individuals and teams to create alignment and drive outcomes

· Broad knowledge of enterprise-class technology, equipment, and/or systems

The above statements are intended to describe the general nature of work performed by the associate(s) in this job. Specific duties and responsibilities may vary by position.