Job Profile Summary
The Information Security Analyst is responsible for the implementation, execution, and maintenance of technology solutions with a focus on understanding the organizations secure code and vulnerability exposure. Provides thought leadership to small-mid-sized projects and solves a range of problems applying standard operating procedures.
As the Information Security Analyst, will support the Information Security and Risk Management needs of our client to continually support and improve the controls and security posture within our Information Technology environment, specifically focusing on code vulnerabilities.
Job Duties and Responsibilities
General
• Experience with ServiceNow Vulnerability Management and Response
• Experience with Wiz, Snyk, and Tenable or similar tools
Work independently under the direction of a more senior staff member or manager
• Demonstrate deep expertise within assigned assets, information domains, technologies, and platforms
• Solves a range of problems using existing process and solutions
• Understand and apply standard operating procedures and standards to implement, maintain, and provide mitigation solutions to assigned assets, technologies, or platforms
• Successfully deliver the right results on initiatives in a timely and effective manner
• Communicate within IT and with assigned business area to drive successful execution and maintenance of solutions
Specific
• Understand and apply Information Security policies, standards, and processes to ensure the confidentiality, integrity, and availability to information and information systems
• Support assigned security technologies in accordance with security policies, standards, and SOP's
• Provide assistance with other deployed security technologies and support team members
• Support regulatory examinations and internal audits as needed
• Provide on-call support in support of assigned Information Security deployed technologies
• Ability to understand potential cyber threats and respond appropriately across all IT services, technologies, and processes
• Experience and proficiency with cloud technologies such as Azure or AWS or other cloud platforms and their security
• Experience and proficiency with application security whether on premise or in a cloud environment to identify, analyze, and recommend remediation for systems with code vulnerabilities
• Monitor and review vulnerability scans to provide detailed analysis of code vulnerabilities to team members and leadership
• Review, troubleshoot, and resolve technical issues
• Run scheduled and ad hoc security reports around enterprise security posture
• Review and define requirements for mitigation strategies and solutions
Required Job Qualifications
• Bachelor's degree or equivalent experience in computer science, information technology, business, or related field
• Typically 3 or more years of applicable experience
• Experience with ServiceNow Vulnerability Response and Snyk
• Ability to analyze and interpret code vulnerabilities
• Demonstrated leadership on small-mid scale projects impacting strategic priorities
• Critical and analytical thinking skills
• Ability to communicate verbally or in writing the threats, vulnerabilities, and mitigation strategies and remediation clearly and effectively to leadership in a timely manner
• Knowledge of the FAIR methodology and risk quantification
Other Critical Factors
• Thought Leadership: Understands the business need and translates into technical plans and processes within an assign area. Resolve a range of problems using sound judgment and decisions making.
• People Leadership: Strong verbal and written communication skills with the ability to translate business need into technical requirements. Building strong relationships; collaborating and influencing others within IT and across the organization.
• Results Leadership: Deliver the right results on initiatives in a timely and effective manner. Looks for opportunities to drive improvement.
• Personal Leadership: Demonstrates ability to work in ambiguity. Successful in self-management, planning, and organization. Is flexible in meeting business needs. Demonstrates a continuous learning mindset.
Skills:
Security, Information security, Cyber security, Compliance
Top Skills Details:
Security,Information security,Cyber security,Compliance
Additional Skills & Qualifications:
Required Job Qualifications
• Bachelor's degree or equivalent experience in computer science, information technology, business, or related field
• Typically 3 or more years of applicable experience
• Experience with ServiceNow Vulnerability Response and Snyk
• Ability to analyze and interpret code vulnerabilities
• Demonstrated leadership on small-mid scale projects impacting strategic priorities
• Critical and analytical thinking skills
• Ability to communicate verbally or in writing the threats, vulnerabilities, and mitigation strategies and remediation clearly and effectively to leadership in a timely manner
• Knowledge of the FAIR methodology and risk quantification
Experience Level:
Intermediate Level
About TEKsystems:We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.