Accounts Payable, Analysis Skills, Atlassian JIRA, CISA - Certified Information Systems Auditor, CISSP - Certified Information Systems Security Professional, Communication Skills, Computer Security, Cross-Functional, Detail Oriented, Documentation, Establish Priorities, IT Governance, Industry Standards, Information Technology & Information Systems, Information/Data Security (InfoSec), Interpersonal Skills, Leadership, Organizational Skills, PCI, Presentation/Verbal Skills, Project Management Professional (PMP), Project Tracking, Regulatory Compliance, Regulatory Requirements, Research Skills, Risk, Risk Analysis, Sarbanes-Oxley Act (SOX), Security Compliance, Security Policy, ServiceNow, Time Management, Willing to Travel, Writing Skills
Information Security Analyst
REQUIREMENTS
The candidate will be a Global Information Security team member responsible for technical security exception activities for Marketplaces, Corporate IT environments, and adjacent businesses. This individual will work directly with the lead exceptions management engineer and business partners to resolve identified risks related to non-compliance with security policy.
Responsibilities include, but are not limited to, the following:
This entry-level Information Security role requires an understanding of Information Security principles, Information Technology, and Networking basics.This candidate will support the Exception Management program by triaging incoming requests, monitoring work queue, reviewing requests, identifying potential risks, and engaging with responsible parties to obtain status and evidence related to active tickets.
- Triage incoming request tickets to assess for completeness, proper evidence, milestones, facilitating and monitoring approvals as necessary.
- Monitor aging tickets, and facilitating closure requests
- Communicate with ticket owners to obtain the status of milestone commitments,
- Document provided evidence
- Provide weekly updates to Exceptions Management Lead regarding status
- Collaborate with other teams and organizations as needed to identify security controls and remediation plans.
- Provide regular updates to plans as needed to the Exceptions Lead and Information Security leadership.
SKILLS AND QUALIFICATIONS
Excellent interpersonal skills, communication, and attention to detail, and the ability to build
rapport and credibility with multiple stakeholders are vital to the success of this role. The
successful candidate must have:
- Excellent communication skills, including written, verbal, and design skills with demonstrable competence and experience in clearly explaining complex security concepts and technologies for both technical and non-technical audiences.
- Demonstrated ability to research new concepts with the passion to learn and adapt.
- Experience developing clear documentation and reporting.
- 1-5 years experience in Information Security or IT governance, or similar ticket management position.
- Excellent relationship-building and influencing skills in all mediums and throughout all levels of the organization.
- Strong self-motivation, self-management, and time management skills, with the ability to work under pressure, prioritize work, meet targets and escalate when appropriate.
- Experience working in an Information Security environment and demonstrable understanding of the concepts of information risks and the different elements that make up risk.
- Experience with ServiceNow, Jira, Confluence a plus
- Previous experience of compliance programs and regulatory obligations is a plus.
- The successful candidate will be Passionate about our customers, partners, stakeholders, and technology.Marketplaces is a dynamic, fast-paced company, and protecting our brand reputation is critical. A track record working in similarly fluid industries and against tight timelines is a plus.
Qualifications:
1. Education
- BS/BA degree or equivalent experience
2. Experience/Certifications
- 1-5 years professional related work experience
- Certified Professional in Learning and Performance (CPLP), PMP, CISSP, CISA, or other industry certifications will be considered a plus
- Understanding of compliance regulations and requirements such as PCI, SOX, GLBA, and various Data Protection Laws.
- Must be able to interface, influence, and coordinate work efficiently and effectively with business colleagues and teams in multiple locations at all levels.
- In-depth knowledge of information security principles and of relevant industry standards.
- Aptitude to quickly learn new environments and technologies.
- Must be organized, goal-oriented, and a self-starter.
- Experience working in a fast-paced, highly complex environment.
- Experience working with cross-functional teams to deliver results.
- Ability to travel (domestic and international) as required. No travel is currently projected for this position.
#LI-1269610_CJ1
#LI-BS1
#LI-IA1
#LI-BP1
#LI-NB1
#LI-AP1
#LI-DM1
#LI-PT1
#LI-NT1
#LI-SG1
#LI-RB1