Information Security & Governance Analyst

TMP Worldwide - New York City, NY - The Information Security & Governance Analyst within Radancy’s Global Security, Risk, and Compliance (‘GSRC’) group is responsible for monitoring multiple sources of security and compliance events and notifications. The GSRC team’s main focus is to identify risks to Radancy’s Unified Platform and corporate computing environments, and to provide consistent and coordinated responses to Information Security, Regulatory, and Compliance incidents and events. As an Information Security & Governance Analyst, you will detect, analyze, and mitigate potential intrusions and other security incidents, as well as monitor for compliance with Radancy’s internal controls and regulatory obligations, and proactively identify areas for improvement. Responsibilities Responsibilities: Manage Information Security and Compliance Monitoring tools Install and Configure Monitoring Tools, including SIEM, EDR, IDP/IDS, and DLP Evaluate the health and management of Advanced Threat agents deployed to endpoints Respond to Alerts Provide forensic analysis of network packet captures, DNS, proxy, Netflow, malware, host-based security and application logs, as well as logs from various types of security sensors Analyze events and traffic for signs of Intrusion Coordinate Incident and Event remediation and mitigation efforts with IT Owners within internal SLAs Perform root cause analysis of security incidents Identify areas for improvement Actively participate in systems design to ensure consistent implementation of security policies and procedures Conduct IT Infrastructure and Application evaluations and Security Risk assessments, based on internal Security and Compliance controls (SOC 2, NIST, ISO 27001, GDPR, CCPA) Provide technical guidance and expertise for internal technology teams to enhance their security practices, educate process owners on the importance of controls, and an effective control environment Review information risk and advise on Technology Projects, Change Management Process, Significant changes to IT procedures, IT Asset Management, 3rd Party Vendor Contracts, IT Disaster Recovery Plan/Process, Record Retention Process, and Internal or external audit findings. Stay up to date on Cybersecurity trends and advances and help to update the information security strategy to leverage new technology and threat information. Analyze existing security and compliance procedures and suggest changes to Technology Leadership. This includes proposing updates to and maintaining internal policies and procedures documentation to ensure our security posture is evolving and compliant with evolving data protection and privacy legislation Create regular reports for upper management based on metrics and data analysis Qualifications Qualifications: Familiarity with the following regulatory and control frameworks: ISO 27001, ISO 27002, NIST 800 series publications, SOC 2, HITRUST, CIS, CSA, GDPR, CCPA, and Data Localization requirements in China and Russia Strong practical knowledge of web security standards (e.g., SANS Top-20, OWASP Top-10, etc.) Experience managing EDR, AV, and SIEM tools (e.g., Sentinel One, Crowdstrike Falcon, BitDefender, McAfee, Symantec, Wazuh, Security Onion, LogRhythm, Exabeam, InsightIDR) Including understanding the underlying logic that security alerts are built upon and the ability to apply them when analyzing raw logs and creating new dashboards and alerts Understanding the typical behaviors of both malware and threat actors, and how common protocols and applications work at the network level, including DNS, HTTP, and SMB Understanding the OSI model Scripting experience (e.g., Python, Ruby, Perl, BASH, PowerShell, VBA) Technical knowledge of Operating Systems (Windows/Mac/Linux), and Networking Experience securing web applications and a strong understanding of web application design, functions and Software Development Life cycle preferred Experience in analyzing data and providing metrics, technical diagrams, topology maps, reports and presentations. Bachelor’s degree in a related field preferred (Computer Science, Information Systems management, Engineering) 3+ Years working in IT (with an emphasis on Security preferred) Non-degree holders expected to have 2x experience and Industry Certifications Industry Certifications a plus (CISSP, CISM, CSMA, CISA, CEH) Ability to occasionally adjust work schedule to meet business needs (occasional after hours and weekend requirements) Ability to work effectively with both local and remote staff, teammates, managers, MSPs, and contractors. Radancy is an equal opportunity employer and welcomes all qualified applicants regardless of race, ethnicity, religion, gender, sexual orientation, disability status, protected veteran status, or any other characteristic protected by law. We actively work to create an inclusive environment where all of our employees can thrive.... - Permanent - Full-time

source http://jobviewtrack.com/en-in/job-1e1a41644302001c4a15540a070f4e340043011a0007530b7c434c08161d5376690d0e0e1c0a04541d070753794e5e585f0d1b1707334f150d1300060b43116a201d4c444f404c100601495473060b141c0e1159763b0c105f59545954442e00461859101c632709034f060508074344530d6c0a0e025e0754625957595f56/1f0d970f1df4ef19a5bc6545f7b286cb.html?affid=f584d43114bf1954a48e3ec6be21b6ec