Information Security Analyst- Security & Audit Response
-Full Time Role in Manhattan, New York
The Information Security Analyst is an experienced professional that knows how to identify gaps in protection that make an infrastructure system vulnerable. The auditor has the skill set to find security issues on the network, create reports and remediation paths that are then sent to key stakeholders. The candidate will work closely with third party firms to conduct, analyze, and implement a security strategy.
Will be responsible for evaluating the security posture of internal IT controls, policies and procedures to evaluate the design and operational effectiveness of the security program.
Determine exposure to risk and develop remediation strategies
Perform continuous vulnerability monitoring
Manage breach and attack simulation platform
Review results from 3rd party penetration tests for accuracy
Create a and improve upon the process for security audits across the entire organization.
BA/BS degree in Information Technology/Computer Information Systems or related
CIA (certified internal auditor), CISA (certified information systems auditor), or CISSP (certified information systems security professional)
3-5 years in corporate audit roles preferred
Experience in fast paced, start-up environments is preferred - able to work comfortably under pressure, frequently changing landscape and tight deadlines
A strategic thinker with excellent business judgment
Highly motivated and willing to take on multiple responsibilities at once
Resourceful and relentless: independently capable of seeking information, solving conceptual problems, corralling resources, and delivering results in challenging situations
Highly Innovative problem solver possessing strong interpersonal, multi-tasking, organizational, project planning skills, and a demonstrated ability to meet aggressive deadlines
Excellent verbal and written communication skills; ability to deal with complex problems and present recommendations and findings in a clear, concise format
Quick and scrappy learner who adapts well to a fast-moving environment and gets things done, combines creativity, problem-solving skills, and a can-do attitude to overcome any obstacle
Highly proficient in internal auditing, internal controls, and risk management
Comprehensive understanding of internal control environments within the IT function
Familiar with multiple technology domains including aspects of Windows, Firewalls (functionality), Office 365 Security, Endpoint Security, Multi Factor Authentication, software and networking
Great awareness of cyber security trends and hacking techniques.
- provided by Dice Associated topics: attack, cybersecurity, information assurance, information security, leak, malicious, protect, security analyst, security engineer, violation
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.