Information Security Analyst, Remote

Full Time
Information Technology

Job Description

• Implement and maintain information security solutions to support both practice needs and the One Firm Cyber Security strategy.
• Work to continually improve the security posture of client-facing applications developed by ensuring risks are identified and appropriately mitigated.
• Continually improve the security posture of client-facing applications ensuring risks are identified and appropriately mitigated.
• Support client security assessments and internal and external compliance activities (e.g. audits) while maintaining and enhancing the client-facing security documentation and processes.
• Be responsible for the implementation and maintenance of information security solutions in accordance with the information security strategy.
• Design and present recommendations on best practices to improve the security levels of systems and/or processes in place to.
• Provide reporting on security compliance, incidents, Key Performance Indicators (KPIs) and Objectives and Key Results (OKRs).
• 5+ years relevant technical and security-related experience, ideally in a professional services environment or regulated industry.
• Knowledge with securing native AWS solutions a plus.
• Excellent foundation in overall security standards, security policies, and security audits; strong understanding of IT concepts as they relate to security risk.
• Working knowledge of common information security controls, guidelines and standards such as HITRUST, ISO27001, OWASP, SOC 2, NIST.
• Knowledge of data protection regulations such as GDPR, CCPA, and HIPAA would be ideal.
• Strong organizational and interpersonal skills; ability to manage multiple projects and deadlines simultaneously; ability to work independently; strong communication skills; strong teamwork and collaboration skills.
• Desired Skills CISSP (or similar certification), a plus.

Additional Details

Experience: 5-10 years