SUMMARY We are actively seeking an experienced information security analyst to join our Application Security team. In this role, you will collaborate with business and technical project teams to provide security expertise in the design and implementation of new applications. This will also require that you assess potential risks that may arise as different solution options are explored to ensure that we are meeting the needs of the business, that policies are set up appropriately and that these solutions will work effectively within our technical environment. This position will report directly to the Senior Director of Security Governance.
Collaborate with cross-functional project teams to define application security requirements and security architecture.
Facilitate data classification exercises with application owners.
Ensure new applications are in alignment with policy, regulatory, and business requirements and systems are implemented in a secure manner.
Evaluate exceptions to determine if compensating controls provide adequate protection of data.
Assess 3rd party solution providers for compliance with security policies and controls requirements.
Collaborate with legal and supply chain offices to review contracts.
Collaborate with the Security Operations and IT infrastructure teams to consider application integrations and impacts.
At least 3 years of demonstrated experience in information technology and information security required.
A Bachelor s degree in an IT or related discipline required; experience may substituted for education.
Information security certification, such as CISSP, CISM, CISA, or GSEC a plus.
Security consulting experience is highly desirable.
Effective communication skills, both written and verbal, required.
Should have a clear understanding of commercial best-practices and ISO security standards.
Project management experience required.
Experience balancing risk management and business drivers is essential.
Must be highly organized and capable of prioritizing workloads.
Must be experienced in developing and presenting solution recommendations.
**Please note: This job can be worked 100% remotely from within the United States. Preference will be given to those that can work East coast hours.**
Reporting To: Sr Director, Security Governance
Associated topics: cybersecurity, forensic, identity, identity access management, idm, information security, information technology security, security, security analyst, security engineer
* The salary listed in the header is an estimate based on salary data for similar jobs in the same area. Salary or compensation data found in the job description is accurate.