Information Security Analyst
We are looking to hire a new Information Security Analyst who will work directly with our Bounteous team members, lines of business and clients to help protect the data, products and infrastructure against security threats by identifying potential problems with security systems. The role will be working with the IT and Risk teams to meet security and compliance needs, including but not limited to: penetration testing, security monitoring, incident response, threat management, auditing devices for strong security postures, and staying current with the latest Information Security trends and news.
Role and Responsibilities
- Responsible for working with internal Lines of Businesses to help them address client queries regarding Bounteous' information security posture, future strategy and current controls
- Facilitation of the completion of security questionnaires, manage requests, and assignment tracker
- Supporting the Lines of Business and clients in facilitating such reports including certifications (e.g., SOC, ISO, etc.) to a successful outcome
- Working with internal corporate teams to address questions in the area of IT, Infrastructure, Supplier Risk Management, Cyber Defense, and application teams to facilitate responses related to application functionality and security
- Vulnerability Management and reporting that feeds into the Information Technology’s workflow for resolution
- Preform or facilitate penetration testing on clients or internal environments to ensure a strong security posture
- Providing risk based assurance advice on all information security issues to the business and clients
- Analyzing security breaches to identify the root cause
- Continuously updating the company’s incident response and disaster recovery plans
- Verifying the security of third-party vendors and collaborating with them to meet security requirements
- Managing Account review and entitlement processes
Preferred Qualifications
- BA/BS in Computer Science and or equivalent experience
- 3-5 years of experience/background in information security, information security auditor, IT audits and/or previous roles as a business information security officer is a plus
- Information Security specific qualification is desirable (such as CISM, CISA, CISSP)
- Experience of working within internal or external audit, either within a previous organization or as part of a professional services firm is desirable
- Ability to assess security and business risks, analyzing and presenting critical risks and potential remediation activities to all levels of management within the business
- Proficient in the use of MS Office product suite(365)
- Ability to work flexibly to meet demanding deadlines
- Good communication skills, both verbal and written
- Strong time management and organizational skills with the ability to manage multiple tasks and changing priorities
- Ability to work collaboratively in a team
#BI-Remote
#LI-Remote
We invite you to subscribe to our monthly and quarterly newsletters to stay up to date with the latest job openings as well as resources and tips for job seekers here.
Research shows that women and other underrepresented groups apply only if they meet 100% of the criteria of a job posting. If you have passion and intelligence, and possess a technical knack (even if you’re missing some of the above), we encourage you to apply.
Bounteous is focused on promoting an inclusive environment and is proud to be an equal opportunity employer. We celebrate the different viewpoints and experiences our diverse group of team members bring to Bounteous. Bounteous does not discriminate on the basis of race, religion, color, sex, gender identity, sexual orientation, age, physical or mental disability, national origin, veteran status, or any other status protected under federal, state, or local law.
Bounteous is willing to sponsor eligible candidates for employment visas.