Skip to content

 

Sunnyvale, California - USD Full Time Posted: Friday, 14 February 2020
 
 

Duties:

  • This information security analyst will understand client's governance, risk and controls strategy for information security and product security and will be responsible for documenting the security policies, security procedures, product architecture topology diagrams and data flows, security controls definition and implementation details.
  • This person will also closely work with the security and product engineering staff members to assess the current state and maturity of various controls, find gaps and define roadmap to address those gaps.
  • The analyst will mainly focus on security-related documentation required for internal and external/audit consumption to obtain industry certifications like PCI-DSS compliance, ISO 27001, SOC2 and SOC3 certifications and other similar regulatory certifications.
  • This person will also focus on enabling client to be an integral member of Cloud Security Alliance (CSA) and submit the self-assessment documents.

Required Skills:

  • The analyst must have deep understanding of technologies, tools and architecture related to Threat and Vulnerability Management, DevSecOps, Customer Facing IAM, Employee facing IAM, infrastructure security, data security and security intelligence involving SIEM tools implementation and SOC functions.
  • Excellent verbal and written communications are required.
  • The security analyst should have deep understanding of business context of IaaS PaaS and SaaS cloud offferings and what it takes to secure these product offerings.
  • The analyst should also be able to translate the security implementation into risk and governance language for consumption by legal, privacy,. internal audit and external auditors.
  • The analyst should also understand NIST and COBIT control framework and should have prior experience of helping an organization go through the certification process for certifications like ISO 27001 SOC2 etc.
  • Knowledge of and experience in ITSM business processes and the corresponding documentation is required.

Education:

  • A bachelor's degree in information technology, identity management, product security, information security or network security is usually needed to work in this kind of position.
  • 5+ Years of experience in the field and/or additional IT certifications are usually a plus.
- provided by Dice

Sunnyvale, California, United States of America
IT
USD
SA Technologies Inc
SA Technologies Inc
JS6874_6CF52457ED22BFB4C7A6C63A6216CA7E/844558950
2/14/2020 3:19:10 AM

We strongly recommend that you should never provide your bank account details to an advertiser during the job application process. Should you receive a request of this nature please contact support giving the advertiser's name and job reference.