Dieses Stellenangebot ist nicht mehr verfügbar
Über
Cooper's Hawk Winery & Restaurants is seeking a Senior Information Security Analyst to join our Information Technology organization. This senior individual contributor role supports the Governance, Risk, and Compliance (GRC) program and leads day-to-day security operations, including investigating and coordinating remediation of security alerts from internal systems and managed service providers, as well as developing and maintaining security policies, standards, and guidelines in alignment with PCI-DSS 4.0, SOX/ITGC, and NIST CSF 2.0.
The Senior Analyst serves as an escalation point for complex security incidents and partners closely with Infrastructure & Operation, Applications, Cloud, and Restaurant Technology teams to protect technology, data, and payment environments across our corporate and restaurant systems. This role contributes to the ongoing maturity of the cybersecurity program through strong operational execution, risk-based decision-making, and close collaboration across the business.
How You Will Succeed:
Monitor, triage, investigate, and respond to security alerts, events, and vulnerabilities across corporate IT, cloud platforms, restaurant systems, POS environments, and payment systems, ensuring timely containment, remediation, and documentation. Support in maintaining, and optimizing security tooling including EDR, SIEM, IAM, SOC portals, and threat intelligence platforms; tune detection rules and response playbooks to improve signal quality and reduce false positives. Act as the primary operational security contact for MDR/SOC partners, coordinating alert validation, incident response activities, and remediation follow-up. Lead vulnerability management efforts across systems, partnering with Infrastructure, Restaurant Technology, and Application teams to prioritize and remediate findings within defined SLAs, with a focus on PCI-related risks. Review and analyze reports from internal security tools and external partners to identify trends, systemic risks, and required corrective actions. Support security operations for point-of-sale (POS) systems, payment processing environments, and cardholder data, ensuring alignment with PCI-DSS Level 1 requirements. Develop and maintain security dashboards, metrics, and reports covering incidents, vulnerabilities, SLA performance, and risk trends for IT leadership. Support compliance and assurance activities related to PCI-DSS, SOX/ITGC, and NIST CSF by aligning operational security processes, controls, and documentation. Develop, document, and maintain security procedures, standards, and technical controls for on-premises, cloud, and restaurant technology environments. Maintain security risk artifacts including the risk register, risk acceptances and exceptions, third-party vendor risk profiles, onboarding records, and security asset inventories. Partner with IT and business stakeholders to embed security best practices into projects, system changes, and restaurant operations. Participate in incident response activities including escalation, coordination, root cause analysis, tabletop exercises, and after-hours on-call support as required. What You Will Bring:
7-10 years of progressive experience in Information Security, spanning cybersecurity operations, security assurance and risk management. Demonstrated experience operating vulnerability management programs, including scanning, risk assessment, remediation tracking, and reporting using tools such as Tenable or equivalent platforms. Proven experience working directly with SOC and MDR providers, including alert triage, incident escalation, response coordination, and validation of detection and remediation actions. Preferably hands-on experience with Microsoft security technologies, including Defender for Endpoint, Defender for Office, Cloud App Security, and Entra ID (Azure Active Directory), in enterprise and hybrid environments. Working knowledge of penetration testing methodologies, findings interpretation, and remediation processes. Experience supporting PCI-DSS (preferably Level 1) and SOX/ITGC compliance requirements in regulated environments. Solid understanding of security frameworks and control models, including NIST CSF, CIS Controls, and Zero Trust principles. Strong understanding of endpoint, application, database, and cloud security best practices across on-premises and cloud platforms. Exposure to DevSecOps practices and secure SDLC processes is a plus. Industry certifications preferred, including Security+, CISSP, CISA, CRISC or equivalent. Bachelor's degree in Computer Science, Information Technology, or a related field, or equivalent professional experience. Other Skills/Abilities:
Ability to adapt quickly in a dynamic environment, evaluate new technologies, and apply them effectively as the security and technology roadmap evolves. Strong organizational and prioritization skills, with the ability to manage multiple initiatives, deadlines, and competing requests. Excellent analytical and problem-solving skills, with a practical, customer-focused approach to security challenges. Ability to communicate clearly and effectively with technical and non-technical stakeholders across IT, business, and restaurant operations. Experience in hospitality or retail environments. Compensation:
$130,000-$160,000. The final offered salary will be based on several factors, including but not limited to the candidate's depth of experience, skill set, qualifications, and internal pay equity.
What You'll Get:
Incredible Discounts: Monthly Dining Allowance 50% Dining and Carryout 40% Retail Wine 20% Retail and Private Events Monthly Complimentary Wine Tasting for Two Medical, Prescription, Dental, Vision Insurance plus Telemedicine and Wellness Program Company Matching 401(k) Retirement Savings Plan Flexible Savings Accounts- Health and Dependent Care Health Savings Account Long-Term Disability; Voluntary Short-Term Disability Basic Life and AD&D Insurance (with option to purchase additional coverage) Paid Parental Leave Highly Competitive Pay plus Team Member Incentives & Rewards Paid Time Off Milestones Recognition Program Complimentary Gym Membership in RSC Building
Cooper's Hawk is an equal opportunity employer. All qualified applicants are considered for employment without regard to the person's race, color, religion, national origin, sex, sexual orientation, age, marital status, veteran status, disability, or any other characteristic protected by applicable law. Cooper's Hawk makes reasonable accommodations during all aspects of the employment process, including during the interview process.
The information provided above indicates the general nature and level of work required of the position and is not a comprehensive list of all responsibilities or qualifications. The Benefits list is only a highlight of some of the benefits offered to team members; eligibility for certain benefits apply.
About Us
Cooper's Hawk features a Napa-style tasting room with wine-inspired retail for entertaining and a full-service restaurant, bar and private event space, offering a modern-yet-casual dining experience. Each scratch-kitchen menu item is designed to pair with our wines. Speaking of wine...the Cooper's Hawk Wine Club is perhaps the largest in the world, offering not only top-notch award-winning wines but also exclusive Wine Club membership benefits, including curated dining and travel experiences. Since 2005, we've brought the Napa Valley experience to our guests and Wine Club members, and now, with Piccolo Buco by Cooper's Hawk, we're bringing the vibrant flavors of Rome to them as well. Together, we're creating a lifestyle brand like no other.
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot wurde von einem unserer Partner veröffentlicht. Sie können das Originalangebot einsehen hier.