Information Security AnalystHighspring (Formerly MorganFranklin Consulting) • United States
Dieses Stellenangebot ist nicht mehr verfügbar
Information Security Analyst
Highspring (Formerly MorganFranklin Consulting)
- United States
- United States
Über
Highspring, formerly known as MorganFranklin Consulting, is seeking an Information Security Analyst responsible for defining, planning, and monitoring security measures for protecting computer systems and information assets. The role involves monitoring security measures, developing policies, and managing vendor relationships in a fast-paced, collaborative environment.
Responsibilities : • Defines, maintains, and reports on overall computer network security strategies (Best Practices/Common Practices) with all information assets connected to the Highspring network. Must have the ability to communicate security policies and strategies to people of varying technical ability both verbally and in written format. • Monitors and provides reports on, intrusion detection and protection systems. • Monitors and reports on device security systems such as anti-virus, anti-ransomware, patch management, and vulnerability assessment tools providing appropriate coordination for response efforts maintaining SLAs. • Monitors operation of, and provides reports on, security information and event management (SIEM) systems. Must have the ability to examine a variety of data sources to correlate events and determine courses of action. • Support the organization’s third-party management program by maintaining current vendor profiles, facilitating vendor security assessments, reviewing compliance and security documentation, and assisting internal stakeholders as well as clients with vendor risk and remediation activities. • Participates in the incident response process when incidents are declared and supports post-incident activities. • Manages relationships and coordinates operational activities between Highspring and external security services providers (e.g., Managed Security Services Providers (MSSP), Penetration Testers, etc.). • Leads the Information Security awareness training program with focused training and simulated social engineering campaigns. • Creates and publishes periodic information security assurance risk posture reports as requested/required.
Qualifications : Required : • Defines, maintains, and reports on overall computer network security strategies (Best Practices/Common Practices) with all information assets connected to the Highspring network. • Must have the ability to communicate security policies and strategies to people of varying technical ability both verbally and in written format. • Monitors and provides reports on, intrusion detection and protection systems. • Monitors and reports on device security systems such as anti-virus, anti-ransomware, patch management, and vulnerability assessment tools providing appropriate coordination for response efforts maintaining SLAs. • Monitors operation of, and provides reports on, security information and event management (SIEM) systems. • Must have the ability to examine a variety of data sources to correlate events and determine courses of action. • Support the organization’s third-party management program by maintaining current vendor profiles, facilitating vendor security assessments, reviewing compliance and security documentation, and assisting internal stakeholders as well as clients with vendor risk and remediation activities. • Participates in the incident response process when incidents are declared and supports post-incident activities. • Manages relationships and coordinates operational activities between Highspring and external security services providers (e.g., Managed Security Services Providers (MSSP), Penetration Testers, etc.). • Leads the Information Security awareness training program with focused training and simulated social engineering campaigns. • Creates and publishes periodic information security assurance risk posture reports as requested/required. • Knowledge of SIEM systems • Knowledge of MS Azure cloud platforms • Knowledge of Email Security Appliances (ESA), Checkpoint, Mimecast, Proofpoint, etc. • Knowledge of Information Security standards and frameworks (International Organization for Standardization 27000 series, National Institute of Standards and Technology, and Center for Internet Security (CIS) controls) • Knowledge of a variety of vulnerability management solutions • Strong verbal, written and presentation skills. • Knowledge of Intrusion Detection Systems/Intrusion Protection Systems • One of the following certifications is required: CompTIA Security+; GIAC security certifications and/or Certified Ethical Hacker (CEH); Certified Information Systems Security Professional (CISSP).
Preferred : • Bachelor’s degree in computer science, Information Technology or Information Security (Cybersecurity) preferred • At least two (2) years of experience in Information Security preferred. • Experience in Privacy a plus. • Experience in AI governance, configuration and assessments, a plus
Company :
MorganFranklin Consulting is now Highspring, a leading global professional services organization with three integrated offerings—Consulting, Managed Services, and Talent Solutions. Founded in 1998, the company is headquartered in Mclean, USA, with a team of 501-1000 employees. The company is currently Late Stage.
Sprachkenntnisse
- English
Hinweis für Nutzer
Dieses Stellenangebot wurde von einem unserer Partner veröffentlicht. Sie können das Originalangebot einsehen hier.