View Our Website View All Jobs

Sr. Information Security Analyst

Title: InfoSec Analyst

Location: Chicago, IL 60606

Length: Full Time

Rate: up to $120K + 10% bonus eligible

Visa: US or GC Only

Job description:

The InfoSec Analyst is responsible for security risk activities management, security policy management, security incident response and security awareness. In addition, the Analyst will oversee and support security administration activities, including monitoring and reporting security activity, user access reviews, internal and external audit requests, vulnerability management and physical/logical security system administration.

Responsibilities:

  • Work with the Infosec Team Manager to develop and execute security strategy that supports the enterprise
  • Manage high-level schedule and plans for major security projects
  • Plan and manage cross-disciplinary projects to upgrade or implement new security technologies
  • Manage daily activities of physical and logical security administration team
  • Measure and report organization's security capabilities using automated and manual tools
  • Oversee security policy management framework, developing and managing organizational and departmental security policies using a policy lifecycle approach
  • Plan and support the organization's training and awareness program
  • Work with the team lead to support IT organization's efforts to formalize risk management in multiple IT business processes
  • Work with Legal/Compliance, Human Resources and Marketing to develop and communicate corporate security policies and manage security incidents
  • Manage security incidents and forensics activities; interface with Legal/Compliance Department to manage legal hold obligations for IT
  • Review IT project proposals and recommend security policies and controls to provide the proper level of information assurance
  • Meet with IT and business leaders to develop solutions which meet business requirements while providing appropriate security controls and meeting regulatory obligations

Incident Management:

  • Manage activities as outlined in the security incident management procedure
  • Log, analyze and report on security incidents
  • Review logs from security tools, including IDS, firewalls, VPN, vulnerability assessment tools, antivirus, etc.
  • Lead and conduct forensics investigations as required during the course of security incident diagnosis, repair and recovery
  • Author and maintain security incident response and forensics procedure
  • Author and maintain vulnerability management process
  • Perform regular security assessments and reporting functions for vulnerability management process

Hardware And Software:

  • Research and test security tools pertaining to tactical or strategic plans
  • Modify policies as required for security devices, including IDS, firewalls, antivirus system and vulnerability management tools
  • Ensure stability and service continuity of security tools by enforcing regular, timely patching and updating software products and underlying operating systems
  • Prepare product and service procurement request forms

Requirements:

  • Master's Degree with 3+ years' experience in managing information security, or Bachelor's Degree with 7+ years' experience in managing information security required
  • Preferred security certifications: CISSP, CISM
  • Must have exposure and previous experience in interpreting industry regulatory documents, including FINRA, GLB and HIPAA among others
  • Knowledge and experience with ITIL and control frameworks such as ISO or CobiT desired
  • Ability to understand business strategies and plans
  • Financial planning skills
  • Excellent negotiation skills and ability to communicate with technical and non-technical audiences
  • Excellent prioritization and organizational skills
  • Attitude and aptitude to get things done
  • Proven team playing skills

Notes:

  • Reports to Manager of Information Security
  • FS Background is a plus, but not required
  • 2 people on the team today
  • 40 total on IT
Read More

Apply for this position

Required*
Apply with Indeed
Attach resume as .pdf, .doc, or .docx (limit 2MB) or Paste resume

Paste your resume here or Attach resume file

150