Security Analyst 2 - Risk

Enterprise Mobility is the world’s largest car rental operator and an industry leader in mobility and technology. We’re one of the top global travel companies, ranking ahead of many airlines and most cruise lines and hotels. And no matter what transportation challenges our customers face, we have an innovative solution.

We operate the Enterprise Rent-A-Car National Car Rental and Alamo Rent A Car brands via more than 10,000 fully staffed neighborhood and airport offices, including franchisee branches, in over 90 countries and territories.

Through this robust global network, we operate a fleet of over 2.3 million vehicles and provide a comprehensive portfolio of transportation solutions, including car rental, carsharing, vanpooling, car sales, truck rental, vehicle-subscription and affiliated fleet management services. As a total mobility provider, we serve the needs of a wide variety of customers, businesses, government agencies and organizations every day.

At the center of it all, our dedicated IT teams innovate, design and develop the technology that is redefining how customers rent, buy and share vehicles from our family of brands. Here, you will be part of a diverse and talented team that creates and delivers powerful technology solutions for our customers and employees across the world with the resources and support to develop in a variety of career paths.

As an Enterprise Mobility team member, we offer an excellent package with market-competitive pay, comprehensive healthcare packages, 401k matching & profit sharing, schedule flexibility, work from home opportunities, paid time off, and organizational growth potential.

This position is open to candidates who wish to work from home (WFH). Team members who choose virtual / remote work should have an adequate space to serve as their home office. #LI-REMOTE

As a Security Analyst 2 in the Information Security Office, you will be responsible for participating in external/third party vendor security & risk assessments, and facilitating/ coordinating IT efforts to comply with security policies, standards, and procedures. Strong communication skills will be key, as you will be interacting with external partners and all levels of management across the organization.
In this role, you will analyze and assess third party's implementation and compliance with information security controls across multiple security domains, identify risks to the organization, and assess possible security and risk recommendations and/ or mitigations, along with determining business impact. You will assist in identifying security risks and exposures by participating in daily standups, security reviews, IT projects, evaluations, and risk assessments to measure compliance with regulations, security policies, and standards. You will be representing the Information Security Office in meetings and communicating security standards to teams. It will be key to have base-level knowledge of published security standards (ISO, NIST, SOC 2, PCI), and the ability to translate information security policies into operational processes.
Key Responsibilities:

• Conduct vendor security assessments and compliance reviews
• Conduct security reviews of information technology infrastructure and applications
• Interface with IT and Business community on implementing controls for corporate and regulatory compliance

Required: