What are the responsibilities and job description for the Information Security Analyst 4 position at Sunrise Systems, Inc.?
Our client, a leading athletic footwear and apparel manufacturing company, is looking for an Information Security Analyst 4. This is for an initial duration of 12 months and is a remote opportunity.
Job Title : Information Security Analyst 4
Reference ID : 25-06132
Location : Remote
Duration : 12 months
Job Type : Contract (Candidates must be able to work on W2 without VISA sponsorship)
Senior GRC Analyst :
Client's Corporate Information Security Governance, Risk, and Compliance (GRC) team is responsible for enterprise wide GRC ensuring Client leadership has the information needed to make strategic risk-based decisions and maintain compliance with international regulations while enabling the achievement of Client business objectives globally.
You must be passionate about GRC, as you'll need a good working knowledge of industry best practice frameworks, such as ISO, NIST and CoBIT. You will regularly meet with business and technology teams across Client to consult with them on their security and compliance requirements. You will work cross-functionally within the Corporate Information Security (CIS) teams and across Client.
Description :
Assess moderately complex platforms against Client security and configuration standards.
Evaluate and process exceptions to information security policies and standards.
Participate in complex internal risk assessments, identifying information security risks through analysis of threats and vulnerabilities, and reporting on those risks to Client business and technology owners.
Perform risk assessments of critical third-party vendors and ensure the business objectives align with the type and volume of data used in maintaining a "need to know / use” mindset.
Utilize your thorough understanding of ITGC's to consult with Technology units on compliance matters.
Champion information security policies, standards, controls, and processes so that compliance requirements are addressed as part of "business as usual” operations.
Lead business units in control design and control operations related in support of compliance requirements.
Perform Compliance control validation testing to determine the operating effectiveness of IT controls for scoped systems.
Provide analysis and insights into data supporting the effectiveness of technical and process-based cyber security controls and establish automated data pipelines that feed data visualization tools, such as Tableau.
Collaborate effectively with Client leaders, managers, employees, and partners to provide deliberate and thoughtful engagement throughout Client.
Help drive execution of the Information Security training programs. Ensure the workforce stays fully informed on information security through formal trainings and oversee the development and delivery of security training and awareness campaigns.
Effective, positive verbal and written communication skills and experienced creating and developing high-quality PowerPoint presentations.
What We're Looking For :
Knowledge of information security principles and practices, general procedures and guidelines.
A general understanding of technology use, trends and risks as it applies in a business context and environment.
Experience reviewing third party SOC reports.
Experience / working knowledge with PCI DSS (Former QSA is a benefit).
Knowledge of information security principles, frameworks, and best practices (e.g., PCI DSS, COBIT, COSO, NIST and ISO 27000).
Excellent collaboration skills – must be eager to work as part of a cohesive team and work as a partner to others within Client, Inc. both at WHQ and globally.
Experience with ServiceNow, Confluence or JIRA.
5 years experience GRC (governance, risk, & compliance) and / or IT / Network Security.
Experience in ISO, NIST and CoBIT
Have curiosity, a team player & have the ability to make connections with the stakeholders
Main job fucntion will be doing risk assessments & reports.
Interested and Qualified candidates, please send your most recently updated word document resume to sangeeth.k@sunrisesys.com or Jaffer.s@sunrisesys.com .
Keep a pulse on the job market with advanced job matching technology.
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution.
Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right.
Surveys & Data Sets
What is the career path for a Information Security Analyst 4?
Sign up to receive alerts about other jobs on the Information Security Analyst 4 career path by checking the boxes next to the positions that interest you.
