Job Description Information Security Analyst Job Summary As a member of the IT Security, Governance and Service Delivery team you will actively work with the Global IT team and other business partners. The position is responsible for participating in or leading the investigations, mitigation and resolution of information security events, alerts and incidents, performing security vulnerability and risk assessments, monitoring and measuring information security compliance, defining security requirements for various IT projects and testing and validation of security controls. Key Responsibilities
- Proactive monitoring of the IT environment for security incidents, risks, and weakness.
- Respond to security alerts from multiple sources; includes triage, containment, and remediation.
- Performing information security incident response and investigations alongside other members of the Global IT team and other functional departments.
- Perform security vulnerability and risk assessments of information systems.
- Conduct various audits and coordinate information security assessments by third party partners.
- Defining security control requirements as a member of various IT project teams
- Testing and validation of security controls.
- Participate in the development of information security policies and standards.
- Monitor external standards and best practices for Cybersecurity program advancements.
Skills and Experience Requirements
- Degree in Computer Science, IT Security or related field or equivalent work experience
- 3+ years' work experience in the information security field
- One or more of the following Information Security Certifications, or equivalent, preferred:
- (ISC)2 System Security Certified Practitioner
- (ISC)2 Certified Information Systems Security Professional
- (ISC)2 Information Systems Security Architecture Professional
- GIAC Security Essentials Certification
- GIAC Security Leadership Certification
- ISACA Certified Information Security Manager
- Microsoft Certified Systems Engineer: Security
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Strong technical knowledge of information systems including networking and telecommunications, Microsoft Windows Domains, application security, database security, etc.
- Knowledge of vulnerability and risk assessment methodologies and experience performing these assessments
- Good knowledge of information security practices, principles and standards (e.g. ISO, NIST)
- Strong organizational skills and multi-tasking capabilities in a fast-paced environment
Other Requirements
- Strong analytical and problem solving abilities
- Ability to effectively prioritize and execute tasks in a high-pressure environment
- Project Management
- Strong communications skills with the ability to present effectively verbally and in writing to small and large audiences
- Ability to work cooperatively in a team environment
#LI-HYBRID