Information Security Analyst II
CSG
full-time
Posted on:
Location Type: Remote
Location: Remote • 🇧🇷 Brazil
Visit company websiteJob Level
Mid-LevelSenior
About the role
- Support the security policies, practices, procedures, and technologies to ensure the protection of networks, systems, applications, and data
- Act as an information security expert within the organization, ensuring corporate security controls are effective
- Involved with day-to-day security operations, responding to security events of interest and recommending corrective action
- Support the processes and objectives of the Governance, Risk, and Compliance (GRC) function and Payment Card Industry (PCI) Compliance Program within the Information Security department
- Participate and be an integral component of audit, compliance, and regulatory functions, including but not limited to: PCI DSS, SOX, and emerging state and Federal privacy laws
- Participate in a vulnerability management program including external and internal vulnerability scans and penetration tests, documenting and remediating identified vulnerabilities and exploits
- Making recommendations to various IT teams on the mitigation process for identified vulnerabilities
- Facilitate and manage policy exception, risk acceptance, policy management, and other GRC workflows within the security function
Requirements
- College degree: Management of Information Systems, Information Security, Business/ Accountancy (auditing focus), related field, or equivalent experience
- Experience with audits, controls, and PCI and/or ISO requirements
- Experience administering and creating workflows in GRC tools
- Experience working in a highly-regulated environment
- Working knowledge with IT security, compliance, and regulatory requirements, such as: Payment Card Industry (PCI) Data Security Standard (DSS), Sarbanes-Oxley (SOX), Healthcare Information Privacy Protection Act (HIPPA), state and Federal privacy laws
- Advanced knowledge of IT security concepts.
- GIAC Security Essentials (GSEC)
- Other Governance, Risk, Compliance, Audit, or Security certifications
Benefits
- Sulamerica Health
- Sulamerica Dental
- Vidalink Food/ Meal Voucher
- Child Care Assistance
- Day off: on birthday
- Gympass
- Language assistance
- Digital course platform
- Volunteer time off: 2 days a year
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
vulnerability managementpenetration testingsecurity operationsaudit controlsworkflow administrationIT securitycompliance requirementsrisk managementdata protectionsecurity policies
Soft skills
communicationproblem-solvingrecommendationcollaborationorganizational skills
Certifications
GIAC Security Essentials (GSEC)