Security Analyst
Insidesales.com - Provo, UT

This job posting is no longer available on InsideSales.com. Find similar jobs: Security Analyst jobs - Insidesales.com jobs

DESCRIPTION

Security Analyst

To Apply Visit: www.insidesales.com/?aisc256

Overview: The Information Security Administrator will help InsideSales.com manage, protect and secure the organization's data and information systems. They will also install safeguards to protect assets by identifying and solving potential and actual security problems. Develops security policies relating to data, communications and physical access.

Benefits: We offer stellar compensation plans, a fast-growth career track, and sweet benefits-- including medical, dental, life, disability, time-off, a gym membership, creative allowance, cross-function training, and more.

To Apply Visit: www.insidesales.com/?aisc256

DUTIES

Position Responsibilities:
  • Directs the planning, implementation, and execution of security policies, activities, audits and facilities against network and data security breaches and vulnerabilities.
  • Remains current on information security topics and trends.
  • Reviews enterprise contracts and ensure we are in compliance with all security requests.
  • Participates in development of information technology disaster recovery and business continuity planning.
  • Audits existing systems, and directs the creation and administration of information technology security policies, activities, and standards.
  • Develops goals, objectives, and policies to ensure compliance with all applicable state, federal and DHECC data and network security guidelines, rules, and statutes.
  • Conducts periodic audits of internal data and network security controls to validate effectiveness, identify risks, and promote continuous improvement.
  • Reviews technology contracts for goods and services to ensure that data and network security aspects are properly addressed, and monitors contractor and vendor performance to these terms and conditions.
  • Researches, evaluates, recommends, and assists in developing systems and procedures for the prevention, detection, containment, and correction of data and network security breaches.
  • Creates and administers IT's data and network security related policies, procedures, processes, and checklists to ensure success of the information security program.
  • Educates users and promotes security awareness.
QUALIFICATIONS

Position Qualifications:
  • Three years work experience in accounting audits, information security, network security, or IT auditing required.
  • Three to Five or more years related work experience with direct experience in maintaining an information resources technology security program; working in business continuity and disaster recovery; and experience in planning and managing projects preferred.
  • Bachelor's degree in accounting, finance, information technology, computer science, computer information systems, management information systems, or related field.
  • Operational knowledge of networking, operating systems, internet and data security application support.
  • Knowledge of limitations and capabilities of computer systems.
  • Knowledge of hacking techniques and culture.
  • Knowledge of local, state, and federal laws and regulations relating to information security.
  • Knowledge of statistical analysis process preferred.
  • Experience with accounting audits or working for auditing firm such as Ernst & Young, Deloitte and KPMG.
  • Experience with SSAE 16 or SAS 70, SOC Reports, ISO 27000, HIPPA-CFR 45, EU Data Protection Directive, and Massachusetts Data Security Regulations.
  • Planning, organizing and working independently, as well as within a team environment.
  • Presenting technical data in an understandable format to lay- and technical-audiences.
  • Resolving complex security issues in diverse environments.
  • Maintaining an established work schedule and being on call 24 hours per day to resolve security-related problems.
  • Configuring, deploying and monitoring security infrastructure.
  • Performing security risk assessments and audits.
  • Reviewing system and application specifications and making recommendations for security enhancements.
  • Maintaining confidentiality of work related information and materials.
  • Establishing and maintaining effective working relationships.
To Apply Visit: www.insidesales.com/?aisc256 Position Responsibilities:

  • Directs the planning, implementation, and execution of security policies, activities, audits and facilities against network and data security breaches and vulnerabilities.
  • Remains current on information security topics and trends.
  • Reviews enterprise contracts and ensure we are in compliance with all security requests.
  • Participates in development of information technology disaster recovery and business continuity planning.
  • Audits existing systems, and directs the creation and administration of information technology security policies, activities, and standards.
  • Develops goals, objectives, and policies to ensure compliance with all applicable state, federal and DHECC data and network security guidelines, rules, and statutes.
  • Conducts periodic audits of internal data and network security controls to validate effectiveness, identify risks, and promote continuous improvement.
  • Reviews technology contracts for goods and services to ensure that data and network security aspects are properly addressed, and monitors contractor and vendor performance to these terms and conditions.
  • Researches, evaluates, recommends, and assists in developing systems and procedures for the prevention, detection, containment, and correction of data and network security breaches.
  • Creates and administers IT's data and network security related policies, procedures, processes, and checklists to ensure success of the information security program.
  • Educates users and promotes security awareness.

InsideSales.com - 2 years ago - save job