The Senior InfoSec Analyst is primary point of contact for anything related to the risk and security involving workforce equipment, networking, enterprise applications, cloud infrastructure, as well as technologies like Serverless, and APIs.
Principal Responsibilities and Duties
Monitor various enterprise security tools for vulnerabilities, threats and risks.Escalate and manage cyber security and endpoint risk.Collaborate with technology teams to integrate security into development processesAudit and enhance security measures for existing and new applicationsSupport SOX audits, PCI-DSS assessments, vulnerability evaluations, and penetration testingDeliver regular security status updates to leadershipComply with all company policies and complete additional related tasks as needed
Essential Skills/Qualifications
At least 5 years of experience providing guidance and oversight of security concepts.At least 5 years of experience performing security risk assessments and security architecture reviews.At least 5 years of experience with architecture, software design, networking or cloud infrastructure.Strong familiarity with penetration testing, vulnerability management, OWASP Top 10, thread modeling, offensive or defensive security techniques.Proven experience in securing a public cloud environment, AWS preferred.Enterprise monitoring, log analysis experience.Experience building software utilizing public cloud, AWS preferredRetail ecommerce experiences a BIG PLUS.Professional certification (AWS Certified Solutions Architect or Certified Information Systems Security Professional (CISSP).Experience in a regulated environment such as Sarbanes Oxley (SOX).BS in Computer Science, Cyber Security, Engineering or Information System, or equivalent work experience.
Other Important Factors
Must be a self-starterExtremely methodicalCompany DescriptionConfidential SearchCompany DescriptionConfidential Search Read Less