Sr. Analyst, Information Security

About The Position

Requirements

• Bachelor's Degree in Computer Science or relevant field; demonstrated progression toward security certifications
• 5+ years and progressive Security and/or Audit experience
• SIEM, IDS/IPS, Malware, Vulnerability management, Risk Registers, Threat Intel tools
• Able to travel occasionally - domestically and internationally

Nice To Haves

• Experience working in a matrix environment
• Experience in continuous improvements and agile methodology
• Strong personal interest in Security and Controls
• Strong presentation skills
• Knowledge of IT Security and IT Risk
• Demonstrated ability to facilitate cross-functional teams
• Knowledge of security frameworks such as NIST, ISO 27001 etc.

Responsibilities

• Serve as an intel analyst, researching new threats, attacks, and risks to Chamberlain Group infrastructure and software; identify, collect and organize credible, new intelligence and subject matter relative to current and emerging threats using all the tools, applications and open source information; keep current with security industry best practices and applies to Chamberlain Group per IT strategy and roadmap to prevent incidents
• Coordinate risk management processes such as ITGC, ISO 27001 etc. and maintain risk register
• Act as the primary triage analyst who works with SIOC (Security intelligence and Ops Center) to detect, analyze, escalate, and remediate security events and incidents
• Lead the creation or update of detailed operational processes and procedures related to cyber risk management, and Security Incident Management
• Train IT and Engineering staff on information security best practices, processes, tools, and procedures
• Communicate and promote awareness of applicable regulatory standards, upstream risks and industry best practices across the enterprise
• Address questions from internal and external audits and examinations, including providing requested compliance reporting
• Comply with health and safety guidelines and rules; managers should also ensure compliance across their teams.
• Protect Chamberlain Group’s reputation by keeping information confidential.
• Maintain professional and technical knowledge by attending educational workshops, reading professional publications, establishing personal networks, and participating in professional societies.
• Contribute to the team effort by accomplishing related results and participating on projects as needed.

Benefits

• comprehensive benefits package
• 401k contribution
• participation in a short-term incentive plan