Sr. Security Analyst

Company: STAND 8
Location: New Haven
Posted on: May 23, 2023

Job Description:

STAND 8 is a global leader providing end-to-end IT Solutions. We solve business problems through PEOPLE, PROCESS, and TECHNOLOGY and are looking for individuals to help us scale software projects designed to change the world!

Job Description:

The Senior Security Analyst for Information Security Policy and Process will be responsible for performing day-to-day governance, compliance and risk management tasks attributed to Information Security and information technology.

This position will work in conjunction with the Manager of Information Security Policy and Process to ensure that Information Security risk is properly identified and included in the IT Security Risk register.

This position will include creating and managing information technology and organizational policies and standards in support of legal and regulatory compliance needs as well as general information technology and organizational information security policies and standards that improve the Information Security risk mitigation maturity of the Order.

Responsibilities

---Assist in developing organizational security policies.
---Assist in defining information technology security standards
---Work with various business units to ensure controls are adequate, appropriate, and effective.
---Support vendor due-diligence process and help to lead and define overall third-party risk management efforts.
---Perform security and compliance assessments on new and existing systems, processes, technology.
---Support internal and external audit process for relevant compliance concerns.
---Execute business impact analysis with guidance from the manager of IT Security Information Security Policy and Process
---Assist in maintaining the information security risk register
---Interface with information technology and lines of business to provide guidance and support.
---Perform periodic gap assessments to validate compliance on an ongoing basis.
---Stay up to date and informed on developing regulatory concerns and changing IT and information security trends.


Qualifications

---Bachelor's degree in Information Security, Cyber Security, Computer Science, or another related field3-5 years experience with legal and regulatory compliance standards such as NYDFS
---Experience with IT Information Security policy and process management
---Skilled in writing Security policy
---Exceptional written, oral, and interpersonal communication skills
---Must be able to write Working knowledge of legal and regulatory compliance standards and requirements such as NYDFS
---Strong understanding of the NIST CSF framework and other associated Information Security standards
---Ability to think diagnostically and critically in applying Information Security policy and process knowledge to Vendor evaluations
---Strong analytical and problem-solving skills capable of managing projects that drive business objectives
---Ability to meet tight deadlines and to prioritize tasks
---Ability to excel in a fast paced and rapidly changing environment.
---Prefer experience with policy with an insurance and financial services environment
---Experience in performing vendor Information Security reviews is preferred
---CISM, CRISC, CISA. CISSP or other security management certification is preferred
---Experience with Compliance360 and ServiceNow GRC platforms is preferred


The US base salary range for this full-time position is $105,000-$113,000. Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training.

Keywords: STAND 8, New Haven , Sr. Security Analyst, Professions , New Haven, Connecticut