Sorry, this listing is no longer accepting applications. Don’t worry, we have more awesome opportunities and internships for you.

IT Security Engineer (Compliance)

DirectedLINK

IT Security Engineer (Compliance)

Cypress, CA
Full Time
Paid
  • Responsibilities

    Job Description

    TITLE: SENIOR SECURITY ANALYST

    TYPE: PERMANENT

    LOCATION: CYPRESS, CA

    INDUSTRY: MANUFACTURING AND DISTRIBUTION

     

    COMPANY INFO

    Our client is a Fortune 500 company. They are a leader in their industry; manufacturing and distributing discrete goods for the commercial construction industry.

    • Great company culture with emphasis on collaboration and team building
    • Growth opportunity
    • Minimal outsourcing

    ROLE: The Information Security Analyst III leverages experience in information systems and security to assist with the development of policies and governance that adapt to changing threats over the long term. The Information Security Analyst III assists with Information Security Engineering in the development of architectures, solutions, and standards.

    REQUIRED & PREFERRED QUALIFICATIONS:

    • 5+ years' experience in an Information Security Compliance role to include experience in assessing and recommending internal application and infrastructure controls required
    • Must be self-motivated and able to work independently, with minimal supervision and as part of a team
    • Professional security management certification, such as a ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GISP), GIAC-Security Expert (GSE), or Certified Information Security Auditor (CISA) highly desirable
    • Knowledge and experience with common Information Security management frameworks and best practices required, experience with the National Institute of Standards and Technology (NIST) frameworks and Center for Internet Security (CIS) Critical Security Controls preferred
    • Knowledge and experience with security infrastructures (e.g. Firewalls, IDS/IPS, VPN, Web Content Filters, Proxies, DLP, SIEM, Log aggregation correlation technologies) required
    • General understanding of technical infrastructure (Active Directory, Applications, various Operating Systems, etc)