Information Security Sr Specialist
About The Position
This role is for a Data Protection Analyst working in the Data Discovery and Protection Program. The Analyst is responsible for supporting, developing, and enhancing the Data at Rest Protection Program for both on-premise and cloud environments. The colleague will engage with Business Units across the organization, produce metrics and documentation, and implement and support tools related to the data protection program. A successful candidate will: Assess existing scanning program to implement cloud scanning capabilities Assist in deployment and maintenance of data scanning tools Partner with other groups within the organization to identify and remediate data at rest access risk. Work with risk partners to identify controls, determine control adequacy, and identify control monitoring opportunities and areas for improvement/enhancement Assist in collecting, analyzing, and interpreting data access information and remediate permission compliance issues based on company security standards Discern patterns of complex threat actor behavior, communicate an understanding of current and developing Cyber threats to key stakeholders, and stay current with emerging trends and threats in the field of insider threat
Requirements
- Understanding of information security concepts, best practices, and regulations related to data loss prevention
- Understanding of enterprise security and networking technology and how the technology relates to the prevention, detection, and response of data loss
- Advanced understanding of the Microsoft ®Office suite (e.g., Outlook, Word, Excel, PowerPoint, etc)
- Excellent verbal and written communication skills (including but not limited to: correct English usage, grammar, spelling, punctuation, vocabulary, etc.).
- Ability to execute work independently and as a team member with good interpersonal skills – using tact, patience and courtesy.
- Experience as a security consultant
- Working knowledge of cloud topology
- Knowledge of file share security and Windows ACL administration
- Familiarity with the Financial Services Industry
- Knowledge of varying cloud platforms
- Familiarity with cloud security at major cloud service providers
- Certifications: Associate of (ISC)^2, CISSP, or similar.
- Bachelor’s degree in Information Security, Computer Science or a related field OR
- Bachelor’s degree in Business or other field + 3 years relevant experience
- Equivalent years: BA/BA = HS + 5 years of experience
Responsibilities
- Assess existing scanning program to implement cloud scanning capabilities
- Assist in deployment and maintenance of data scanning tools
- Partner with other groups within the organization to identify and remediate data at rest access risk.
- Work with risk partners to identify controls, determine control adequacy, and identify control monitoring opportunities and areas for improvement/enhancement
- Assist in collecting, analyzing, and interpreting data access information and remediate permission compliance issues based on company security standards
- Discern patterns of complex threat actor behavior, communicate an understanding of current and developing Cyber threats to key stakeholders, and stay current with emerging trends and threats in the field of insider threat
Benefits
- competitive pay
- comprehensive medical, dental and vision coverage
- retirement benefits
- maternity/paternity leave
- flexible work arrangements
- education reimbursement
- wellness programs
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Number of Employees
5,001-10,000 employees
