Sr. Security Analyst
Company: STAND 8
Location: New Haven
Posted on: May 23, 2023
|
|
Job Description:
STAND 8 is a global leader providing end-to-end IT Solutions. We
solve business problems through PEOPLE, PROCESS, and TECHNOLOGY and
are looking for individuals to help us scale software projects
designed to change the world!
Job Description:
The Senior Security Analyst for Information Security Policy and
Process will be responsible for performing day-to-day governance,
compliance and risk management tasks attributed to Information
Security and information technology.
This position will work in conjunction with the Manager of
Information Security Policy and Process to ensure that Information
Security risk is properly identified and included in the IT
Security Risk register.
This position will include creating and managing information
technology and organizational policies and standards in support of
legal and regulatory compliance needs as well as general
information technology and organizational information security
policies and standards that improve the Information Security risk
mitigation maturity of the Order.
Responsibilities
---Assist in developing organizational security policies.
---Assist in defining information technology security standards
---Work with various business units to ensure controls are
adequate, appropriate, and effective.
---Support vendor due-diligence process and help to lead and define
overall third-party risk management efforts.
---Perform security and compliance assessments on new and existing
systems, processes, technology.
---Support internal and external audit process for relevant
compliance concerns.
---Execute business impact analysis with guidance from the manager
of IT Security Information Security Policy and Process
---Assist in maintaining the information security risk register
---Interface with information technology and lines of business to
provide guidance and support.
---Perform periodic gap assessments to validate compliance on an
ongoing basis.
---Stay up to date and informed on developing regulatory concerns
and changing IT and information security trends.
Qualifications
---Bachelor's degree in Information Security, Cyber Security,
Computer Science, or another related field3-5 years experience with
legal and regulatory compliance standards such as NYDFS
---Experience with IT Information Security policy and process
management
---Skilled in writing Security policy
---Exceptional written, oral, and interpersonal communication
skills
---Must be able to write Working knowledge of legal and regulatory
compliance standards and requirements such as NYDFS
---Strong understanding of the NIST CSF framework and other
associated Information Security standards
---Ability to think diagnostically and critically in applying
Information Security policy and process knowledge to Vendor
evaluations
---Strong analytical and problem-solving skills capable of managing
projects that drive business objectives
---Ability to meet tight deadlines and to prioritize tasks
---Ability to excel in a fast paced and rapidly changing
environment.
---Prefer experience with policy with an insurance and financial
services environment
---Experience in performing vendor Information Security reviews is
preferred
---CISM, CRISC, CISA. CISSP or other security management
certification is preferred
---Experience with Compliance360 and ServiceNow GRC platforms is
preferred
The US base salary range for this full-time position is
$105,000-$113,000. Our salary ranges are determined by role, level,
and location. The range displayed on each job posting reflects the
minimum and maximum target for new hire salaries for the position
across all US locations. Within the range, individual pay is
determined by work location and additional factors, including
job-related skills, experience, and relevant education or
training.
Keywords: STAND 8, New Haven , Sr. Security Analyst, Professions , New Haven, Connecticut
Click
here to apply!
|