Application Segmentation Business Analyst

Job Description

Team consists of Project Manager, Network and Firewall engineers. Position requires experience to analyzing large amounts of firewall logs into clear groupings or patterns. Knowledge of firewalls and networking logs is preferred. Working with applications like Pal Alto Panorama is also preferred. Palo Alto and Algo-Sec experience is also preferred or demonstrated experience to quickly learn these tools.

Goal is to reduce end-user device traffic into company's Data Center and Cloud systems. This position will analyze firewall logs of this userbase application traffic and then support the firewall engineers to create application firewall rule. More specifically this position will evaluate applications to collect/parse all data required to identify how users connect to each application – data flows, users/roles, interfaces, etc.

Analysis

• Evaluate applications to collect/parse all data required to identify how users connect to each application – data flows, users/roles, interfaces, etc.
  
• Document application flows (user -? application), application access list (users and what they can access) - tools used are Algosec, Expedition. This data will then be used to create firewall policy.
  
• Will need to conduct meetings with application owners to identify servers used by application, list of users, how app is accessed (web browser, thick client, etc.), and any other key application information like F5/load balanced, integrations with other applications, management interfaces/access, user groups, vendor and cert mgt, etc.
  
• Document end point to data center application traffic flow
  
• BA will develop standard documentation for all applications for review/approval by project team; will also include change control requirements (windows, days, times, etc.)
  
• Perform comparison of information provided by app teams against network tools (Algosec, Expedition, etc.) information
  

Cloud Segmentation

• Build model for adding applications to the cloud (based on IRM or other factors, including project team inputs)
  
• Define risk thresholds and assist with data gathering to define process for defining security policies
  
• Document security policies; develop documentation standard
  

Business processes/decisions

• Need to improve our risk-based analysis criteria/methodology.
  

Requirements

Requirements / Qualifications

• 5 years of technology experience & College degree or technology experience.
  
• Experience with firewalls (preferred Palo Alto- not required).
  
• Experience with Network logs, network data and reports
  
• Experience with Network topologies and Data Flows, application (segmentation experience preferred)
  
• Cybersecurity background strongly preferred.
  
• Advanced modeling and analysis skills
  
• Leverage data to identify/select key applications.
  
• Use of data gathering tools to analyze network flow (please list specific experience/tools with proficiency)
  
• Experience developing documentation standards and data models based on several different criteria.
  
• Experience with data/workflow tools (such as Visio)
  
• Ability to work with high performance team and adjust priorities on the fly.
  
• Strong MS Tool proficiency (Teams, Office, etc.)
  

Top 3 Must-Haves (Hard and/or Soft Skills)

1. Experience with firewalls (preferred Palo Alto- not required).

2. Experience with Network or firewall logs, network data and reports

3. Experience with Network topologies and Data Flows, application (segmentation experience preferred)

Top 3 Nice-To-Haves (Hard and/or Soft Skills)

1. highly collaborative

2. Able to learn or pick technologies up quickly

3. Communication- both written and verbal