Information Security Analyst
Avera•Sioux Falls, SD
22h
About The Position
Actively drives participation in the development, evaluation, and reporting of information technology security controls and risks mitigation strategies as well as security processes in the IT and business environments. Delivers and may assist other team members in risk identification and mitigation strategies and processes, control documentation, evaluation of control design, evaluation of control operation, reporting of control deficiencies, and remediation strategies. Reviews current processes for improvements in control documentation & testing for effectiveness and efficiency.
Requirements
- The individual must be able to work the hours specified.
- To perform this job successfully, an individual must be able to perform each essential job function satisfactorily including having visual acuity adequate to perform position duties and the ability to communicate effectively with others, hear, understand and distinguish speech and other sounds.
- These requirements and those listed above are representative of the knowledge, skills, and abilities required to perform the essential job functions.
- Reasonable accommodations may be made to enable individuals with disabilities to perform the essential job functions, as long as the accommodations do not cause undue hardship to the employer.
Nice To Haves
- Bachelor's in related area
- Certified Information Systems Auditor (CISA) - ISACA
- Certified Information Systems Security Professional (CISSP) - International Information System Security Certification Consortium (ISC2)
- Network+ - Computing Technology Industry Association (CompTIA)
- Security+ - Computing Technology Industry Association (CompTIA)
- 4-6 years Related experience in IT, project management, compliance or security areas
Responsibilities
- Actively drives team participation in establishment, evaluation, and reporting on risks and controls in the IT and business environments.
- Designs, performs, and evaluates the current testing of controls while maintaining and improving the process for evaluation of IT controls through a combination of automated testing and interviewing.
- Assists in management of the IT policy lifecycle including development of IT policy standards and IT policy review processes.
- Identify and review current risk areas for IT; analyze existing policies for gaps in coverage for these areas.
- Perform internal self-assessments for management.
- Monitor IT policies to ensure compliance with all aspects of federal, state, and local laws and regulations.
- Collects information on control failures/unmitigated risks, and remediation results to build compliance reports for IT and business management.
- Provides advisory services for IT controls to projects, teams, and audits by ensuring consistent control implementation through documented processes for identifying control requirements prior to their implementation into production IT environments.
Benefits
- PTO available day 1 for eligible hires.
- Up to 5% employer matching contribution for retirement
- Career development guided by hands-on training and mentorship
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Upload and Match Resume
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
