Must Have Skills Skill 1 Any recognized security certifications, e.g., CISSP, CISA, CISM Skill 2 - Monitor internal and external threat landscape to update strategy and intellectual protection program roadmap
Skill 3 Provide periodic reports to management team and key stakeholders
Roles and Responsibility
- Demonstrate strong knowledge in IT controls, risk assessments, and testing of security measures
- Identify opportunities to continuously innovate and improve the program and value delivered to organization
- Ensure successful completion of the annual supplier cybersecurity assessment.
- Perform on-site control validation to ensure the highest impact suppliers have the proper cybersecurity controls in place.
- Independently and proactively plans and performs assigned audit engagements related to security, confidentiality, integrity, information protection and availability of data
- Conduct audit & evaluate in alignment to the supply cyber security control framework.
- Ensure effectiveness of approved controls and drive risk remediation or changes from previous audit for existing certified suppliers
- Inform and advise business leaders on supplier's information security risks
- Provide subject matter expertise in third-party risk management.
- Post audit assessment reports and update stakeholders on findings
Qualifications :
- Bachelor's degree in science & Engineering or technical discipline is required.
- 6+ years of information security & audit experience with increased responsibilities
- In-depth knowledge of security assessment / audit principles
- Understanding of networking principles and data protection
- Ability to identify problems, analyze data and present conclusions.
- Strong verbal, written and presentations skills
- Knowledge of information security frameworks such as ISO 27001 / NIST CSF is preferred.
- CISA, CISSP, CISM, certifications are preferred.
- Excellent English communication skills.
- Able to work as part of a virtual global team with cultural, language, and time zone differences.
- Able to deal with ambiguity and work independently with minimal supervision / guidance.
Information Security Analyst II
A company is looking for an Information Security Analyst II to monitor and respond to information security events within a large enterprise technology ecosystem. ...
IT Security Information Protection Technical Sr. Analyst
Analyst is a member of a service team with upwards of four (4) personnel within the Information Security Operations group that are focused on data loss prevention (DLP), data aggregation/sharing monitoring, sensitive information management, cryptographic services, telemetry logging, and secure file ...
Senior Information Security Analyst
Information Security Analyst specializing in Insider Threats. ...
IT Security Information Protection Technical Sr. Analyst
Analyst is a member of a service team with upwards of four (4) personnel within the Information Security Operations group that are focused on data loss prevention (DLP), data aggregation/sharing monitoring, sensitive information management, cryptographic services, telemetry logging, and secure file ...
Information Security Analyst
Key Responsibilities:Administers network security programs, including event detection and postmortem analysisAnalyzes network traffic logs and escalated work orders, recommending process improvementsAssists in developing companywide security training materials and ensures compliance with regulations...
Information Security Analyst (Multiple Openings)
Master’s degree in Computer Science, Information Security, Information Systems, Systems Engineering, or a related field and 24 months of experience in the job offered or in a related occupation. Alternatively, the employer will accept a bachelor’s degree in Computer Science, Information Security, In...
Information Security Analyst
Independently and proactively plans and performs assigned audit engagements related to security, confidentiality, integrity, information protection and availability of data • Conduct audit & evaluate in alignment to the supply cyber security control framework. Roles and Responsibility • Demonstrate ...
Information Security Analyst
Join one of the nation's top ranked Title Insurance companies, looking for an Application Security Engineer to join their security team. Highly visible - Direct channels to the Director of Information Security. Expertise in cloud security - Azure environments preferred. Experience with API security ...
Security Operations Center Analyst
A company is looking for a Security Operations Center Analyst for a contract position with the State of Maine Office of Technology. ...
Sr. Cyber Security Analyst - Vulnerability Management
This position will work closely with the Security Operations Center manager, peer analysts, engineers, and other teams within the All Covered/Konica Minolta ecosystem to accomplish these goals. Determine customer security requirements by evaluating business strategies and requirements, researching i...