Information Security Analyst

Hybrid: 3 Days On-site

Contract Duration: Open Ended

Locations: St. Louis MO, Charlotte NC, Dallas TX, Des Moines IA, Tempe/Phoenix AZ

Pay Rate: $65hr

Job Description:

• This particular role is responsible for escalating overdue vulnerabilities to senior leaders for help getting urgent, prioritized attention to remediate them.

In this role, candidate will:

• Serve as an analyst in executing the risk management control for vulnerability consequence model escalation.
• Take daily direction from the control lead and overarching direction from the hiring manager.
• Collaborate with other team members involved in executing this control in a collaborative teamwork fashion.
• Identify improvements and lead efforts to implement the improvements to control execution and underlying technology and procedures.
• Develop an understanding of incoming work, identify the affected parties, communicate action needed concisely.
• Work with the remediation owners and their leadership to provide guidance on actions required
• Track deliverables until completed, escalating when deliverables are missed.
• Craft communications and reports which provide transparency into progress and insight into problems or actions needed.
• Retain evidence and artifacts demonstrating the quality of execution of this work in support of audit and control reviews and quality assurance assessments.
• Support the Information Security program in governing vulnerability remediation across the Client Technology organization.
• Consult with line of business on the consistent implementation of the enterprise information security model and solutions to remediate information security risks
• Ensure that risks to all information assets are being managed in a timely and effective manner to meet the Information Security Program requirements and the current threat landscape
• Ensure information security capabilities are included in all aspects of the company's technology architecture
• Proactively manage the information security risk profile of line of business information assets throughout the lifecycle of the asset
• Provide vision, direction, and expertise to more experienced leadership on implementing innovative and significant business solutions that are large-scale, cross-functional, or companywide strategies
• Pursue the necessary training and stay abreast of regulatory and compliance issues
• Engage with all levels of professionals and managers companywide and serve as an experienced advisor to leadership
• Broadly, success is based on on-time delivery of the work, ability to drive resolution of challenges, and proactive escalation and visibility into items at risk or experiencing active issues.
• To address deliverables, take data from many different sources and assemble it into a coherent package for affected teams to quickly digest the actions needed.
• Use systems of records to merge, manipulate, analyze, and summarize data for senior leadership decision making.

Required Qualifications:

• 2 years of Information Security Analysis experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
• 2 years of advanced Excel data analysis

Desired Qualifications:

• Extremely strong attention to detail in recognition that this is a heavily audited enterprise risk management control.
• Prior audit or risk management experience.
• Demonstrated experience in analyzing governance, policy, compliance, and risk management practices
• Ability to work and influence successfully within a matrixed environment and build effective business partnerships with all levels of team members
• Ability to facilitate and lead meetings to reach conclusions, identify tasks, record actions, and achieve results
• Problem solving and decision-making skills
• Strong communication skills and ability to articulate complex material to a diverse audience
• Strong analytical skills with high attention to detail and accuracy
• Excellent verbal, written, and interpersonal communication skills
• Advanced Microsoft Office (Word, Excel, Outlook, and PowerPoint) skills
• Demonstrated experience in use of SharePoint
• Demonstrated experience with Jira
• Demonstrated knowledge of Agile methodology

Note:

• Locations: St. Louis MO, Charlotte NC, Dallas TX, Des Moines IA, Tempe/Phoenix AZ