Job Details

Cyber Security Compliance Analyst

Advertiser
Kforce Technology Staffing
Location
Oldsmar, Florida, United States
Rate
-
RESPONSIBILITIES:
Kforce has a client that is seeking a Cyber Security Compliance Analyst in Oldsmar, FL.

Summary:
The Cybersecurity Compliance Analyst will be a member of the Global Cybersecurity department reporting to the Governance, Risk and Compliance (GRC) team and is responsible for the identification, assessment, measurement, monitoring, and reporting of risk and compliance through the GRC program. This role will work closely with the Global Cybersecurity team to assess and implement the controls necessary to ensure the protection of information systems.

Responsibilities:
* Manage and maintain databases, scripts, and processes required to report out metrics for all Cybersecurity teams
* Provide metrics and reports on progress and risk trends
* Produce metrics and reports to monitor remediation progress, quantify solution effectiveness and synthesize threat trends
* Manage and track Security Awareness. Including, LMS, Phishing, and Cybersecurity Awareness month activities
* Work across security towers to build security automation and orchestration pipelines to expedite the eradication of threats to the network
* Conduct internal compliance reviews and risk assessments
* Define, communicate, and track remediation plans
* Conduct assessments for policy exception requests and provide approvals or denials
* Provide advice based on industry practices on the identification and mitigation of risks, as they are identified through discovery
* Conduct ongoing research on industry best practices and perform daily observations to understand how end users work and use technology
* Document and maintain policies, controls, standards and governance structures to create consistent, timely response to potential threats

REQUIREMENTS:
* Bachelor degree from an accredited College or University with a major in Computer Information Systems or research related discipline or a minimum of 5+ years of direct Information Security experience
* 3+ years of direct experience in an Information Security role focused in Vulnerability Management, Incident Response, Threat Intelligence and/or GRC
* Experience with Database and other Query languages such as mySQL and MSSQL
* Experience with writing advanced SQL scripts and stored procedures
* In-Depth understanding of Security Operations and Incident Response procedures and toolsets for internal and audit/compliance reviews
* Experience providing and validating security requirements related to information system design, implementation and business processes
* Experience working and developing in either python, ruby, or other programming languages a plus
* Experience with ServiceNow Security Operations, Vulnerability Response, and GRC modules a plus
* Having one or more security or audit certifications such as SANS/GIAC, CISSP, CEH, OSCP, CISA a plus
* Cloud computing standards and controls a plus
* Familiarity with, and understanding of, information security technologies and controls
* Knowledge of common information security standards, such as: ISO 27001/27002, NIST, PCI DSS, ITIL, COBIT
* Basic Understanding of System Development Life Cycle methodology
* Understanding of alerts(IOCs) vs telemetry vs enrichment
* This position requires minimal travel

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

- provided by Dice

Send application

Mail this job to me so I can apply later

Apply With CV

You are not logged in. If you have an account, log in to your account. If you do not have an account, why not sign up? It only takes a minute!

latest videos

Upcoming Events