Information Security Analyst
10 months ago
The Information Security Analyst's primary role is to respond to customer security questionnaires and inquiries. This position will be responsibl.....
The Information Security Analyst's primary role is to respond to customer security questionnaires and inquiries. This position will be responsible for supporting governance and oversight of risk and controls for the organization. Additionally, the position will report on security breaches, manage software to protect sensitive information, oversee monitoring of the company’s environment to identify and prevent breaches, and maintain the existing security plan.
The essential responsibilities of the Information Security Analyst are:
- Supports the strategic direction and priorities of the Information Security program, with a focus on processes, controls and ensuring compliance with regulatory and internal guidelines.
- Develops strategic partnerships with internal, customers and external auditors to manage Information Security risk management efforts and program enhancements that support the overall corporate mission.
- Provide evidence of compliance to customers and auditing teams.
- Manages risk effectively by translating regulatory requirements and business needs to develop security controls.
- Manages regulatory and audit findings and remediation of threat and risk issues.
- Develop data analytics, metrics, reporting, and statistical analyses supporting the Information Security program.
- Oversees monitoring of data threads from security tools; correlating those data feeds into a cohesive picture, then performing analysis to determine appropriate remediation action required.
- Accountable for tracking application vulnerabilities and penetration test findings and coordinating with the Engineering and/or Technical Operations to formulate remediation plans to ensure mitigation for potential vulnerabilities.
Qualifications:
- Bachelor’s degree in a computer related field or equivalent years of experience
- CISA, CISSP, CSSLP certification considered an asset
Skills/Experience:
- 3-5 years relevant work experience
- Prior IT Security experience preferred
- Comfortable working with customers
- Familiarity working with security auditors
- Hands on experience as a system administrator and/or with application or vulnerability scanning tools helpful
- Familiarity with relevant security frameworks
- Great organization and communication skills
- Ability to work independently
Official account of Jobstore.
