The Principal Cyber Security Analyst is responsible for auditing of existing IT security systems and the evaluation of new IT security systems for compliance with existing and future regulations including but not limited to GDPR, CCPA, HIPAA, and SOX. This includes conducting vulnerability and risk assessments as part of the secure development lifecycle of all IT systems. Additional responsibilities include assisting in the development of policies, standards, baselines, guidelines and procedures.
The role will also be responsible for working in a team environment to create Business Impact Analysis (BIA), Business Continuity Plan (BCP) and assist in tabletop exercises around both BCP and Incident Response Plans.
The role is responsible for project management from a cybersecurity perspective in order to continuously improve the cybersecurity posture and maturity at CONMED by assisting with technology frameworks including but not limited to: ISO27001, Cyber Essentials Plus and NIST CSF. This requires the analyst to manage internal cross functional teams as well as 3rd party consultants in a team environment. This is a remote position.
Accountabilities:
- Conduct security audits and assessments, analyze results, identify remediation activities and/or compensating controls, and track remediation efforts to completion
- Conduct security architecture reviews provide recommendations and track remediation efforts
- Develop metrics to measure and track compliance, risk, and the effectiveness of the information security program
- Assist in evidence generation, collection and other activities in support of the following compliance requirements: HIPAA, CCPA, GDPR, and other global regulations
- Lead in the implementation and continuous improvement of the Information Security Management System
- Use security tools to monitor, respond and mitigate any threats to the CONMED organization and collect forensic evidence when required
- Participate in periodic information systems risk assessments with the goal of continuously improving CONMED’s security posture
- Lead / participate in Business Continuity planning, Disaster Recovery planning and tabletop exercises
- Create project schedules & define dependencies, work with multi-functional teams & multiple stakeholders to complete project milestones
- Experience managing and delivering infrastructure projects that involves integrating various technologies and/or replacement of older legacy technologies with newer technologies
- Experience in managing projects and providing detailed status/progress on a weekly basis
- Assist with performing data mapping, auditing of systems and controls for compliance with corporate policies and global regulations
Minimum Requirements:
- Bachelor’s degree in Information Security or related degree required, plus 3 years’ experience in a cyber security role.
- Alternately, Associate’s degree in Information Security or related degree required, plus 7 year’s experience in a cyber security role OR 10+ years cyber security experience in the military.
Preferred Requirements:
- CIPP, CISA, CISM, or CISSP preferred
- PMP certification a plus
- Experience implementing information security systems to reduce the threat landscape and improve the security posture at CONMED
- Prior experience project managing security assessment and new IT technology projects for a large enterprise preferred
- Experience implementing and maturing information security practices
- Risk management experience preferred
- Excellent influencing and problem resolution skills
- Ability to prosper in a team environment, build relationships and lead others
- Excellent communication skills, able to analyze and clearly articulate complex issues and technologies in a global, multi-cultural, multi-language environment.
- Ability to effectively prioritize and execute tasks in a high-pressure environment
- Highly self-motivated and able to work with minimal supervision
0-20% travel
This position is not eligible for visa sponsorship.
Disclosure as required by applicable law, the annual salary range for this position is 75,000 to 115,000. The actual compensation may vary based on geographic location, work experience, education and skill level. The salary range is CONMED’s good faith belief at the time of this posting.
#LI-REMOTE
Benefits:
CONMED offers a wide array of benefits to fit your unique needs. Visit our Benefits Page for more information.
- Competitive compensation
- Excellent healthcare including medical, dental, vision and prescription coverage
- Short & long term disability plus life insurance - cost paid fully by CONMED
- Retirement Savings Plan (401K) - CONMED matches your contributions dollar for dollar, with the potential for up to 7% per pay period
- Employee Stock Purchase Plan - allows stock purchases at discounted price
- Tuition assistance for undergraduate and graduate level courses
CONMED is an Equal Opportunity Employer & an Affirmative Action Employer. CONMED is a strong advocate of workforce diversity. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, disability, citizenship status, or veteran status.
If you feel you need a reasonable accommodation pursuant to the ADA, you are encouraged to contact us at 800-325-5900 option #3.