LosAngelesRecruiter Since 2001
the smart solution for Los Angeles jobs

Information Security Analyst

Company: iSpace, Inc
Location: Los Angeles
Posted on: November 23, 2020

Job Description:

Title Security Analyst III Location Torrance, CA Duration 12 Months Description Establish, Maintain and Enforce North America Regional and Local Company-specific Information Security (Cybersecurity), Data Privacy, and GRC Controls, Policies, Procedures and Standards. Continuously monitor the status and effectiveness of all Information Security (Cybersecurity), Data Privacy, and GRC Controls Develop Information Security (Cybersecurity) and Data Privacy processes and procedures and supports service-level agreements (SLAs) to ensure that effective controls and countermeasures are managed and maintained Ensure key risk indicators documented and are effectively monitored to prevent a negative impact on business objectives and brand reputation. Ensure Remediation Plans andor Compensating Controls are established to address risks or gaps identified by CLIENT IT GRC Staff or reported by internal and external auditors. Establish continuous monitoring of all risks and gaps until they have been resolved. Compensating Controls must be re-evaluated at least annually to ensure they are still effective at addressing a risk or gap. Maintain the Information Security Risk Division's Information Security (Cybersecurity), Data Privacy and GRC Policies, Procedures and Standards Documentation, including the associated repositories and portals. Work with Client Business Units, Law Division, Internal and External Auditors to identify Information Security (Cybersecurity), Data Privacy risks, control requirements and standards using methods that may include risk and business impact assessments. Components of this activity include but are not limited to Business System Analysis Communication, facilitation and consensus building Conducting Privacy Impact Assessments (PIA) Preparing post-PIA reports and presentations to advise IT and business unit management regarding residual risks, vulnerabilities and other Information Security and Data Privacy exposures, including misuse of information assets and noncompliance. Facilitate and provide support for all internal and external audits or assessments, including state and federal regulatory agencies. Components of this activity include but are not limited to Coordinate with Internal or External Auditors to comply with their audit requirements, including compiling and organizing audit requirements such as documentation, formal attestations by business unit or IT representatives, providing Assists in the coordination and completion of information security operations documentation. Provide Information Security (Cybersecurity) and Data Privacy thought leadership and guidance to CLIENT IT Infrastructure and Application Development Units. Components of this activity include but are not limited to Support Information Security Risk Division leadership in the development and implementation of strategies and campaigns to address risks or gaps and to reinforce Information Security (Cybersecurity) and Data Privacy practices, techniques and controls across Client Research, evaluate and recommend Information Security (Cybersecurity) and Data Privacy technologies, then developing business cases that effectively capture the both quantative and qualitative characteristics of a technology project or proposal. Work with CLIENT IT Department to identify, select and implement appropriate technical controls for Information Security (Cybersecurity) and Data Privacy Play an advisory role in application development or acquisition projects to assess Information Security (Cybersecurity) and Data Privacy requirements and controls and to ensure that security controls are implemented as planned. Collaborate on critical IT projects to ensure that information security and data privacy risks and concerns are addressed throughout the project life cycle. Partner with CLIENT IT personnel and become a trusted resource and authority on information security and data privacy technologies, practices and techniques. Required Skills ndash MUSTS Bachelor's degree in information systems or equivalent work experience. Industry-accepted Certification n for Information Security or Data Privacy Experience with common information security management frameworks, such as International Organization for Standardization (ISO) 2700x and the ITIL, COBIT and National Institute of Standards and Technology (NIST) frameworks. Knowledge of the fundamentals of project management, and experience with creating and managing project plans, including budgeting and resource allocation. Audit, compliance or governance experience is required Experience implementing Generally Accepted Privacy Principles (GAPP) or COBIT Experience in developing, documenting and maintaining security policies, processes, procedures and standards. Experience developing andor implementing a governance model for privacy and confidentiality. Experience with consumer credit, consumer andor retail services marketing, and supplier management is beneficial. Experience in developing and documenting security architecture and plans, including strategic, tactical and project plans. Experience overseeing information security andor data privacy projects from concept through implementation. Strong understanding of business applications, including ERP and financial systems. Excellent technical knowledge of mainstream operating systems for example, Microsoft Windows and UNIX and a wide range of security technologies, such as network security appliances, identity and access management (IAM) systems, anti-malware solutions, automated policy compliance tools, and desktop security tools. Knowledge of network infrastructure, including routers, switches, firewalls, and the associated network protocols and concepts. Must be self-motivated with strong analytical, organizational, planning and problem solving skills. Strong technical and business writing skills, as well as strong communication skills. Ability to communicate well with technical teams, executives, auditors and business owners and other stakeholders as required Business Experience 10 yrs. experience with information security, privacy, or related field preferably in the captive finance or banking industries Strong proficiency in performing enterprise risk, business impact, control, vulnerability, and privacy impact assessments. In-depth knowledge of risk assessment methods and technologies. In-depth knowledge and understanding of information risk concepts and principles, as a means of relating business needs to security controls. Support Third-Party vendor risk assessment processes utilizing strategic partnerships with multiple internal stakeholder groups (procurement, legal, and business side operations). Ensure North America Client companies are following all required Global Regional policiesstandards via assessments and audits of existing processes. Partner with other internal non-IT, and external groups to stay aware the changing landscape e.g., new legislation and changes to existing legislation. Partner with all North America Client companies to provide support and provide guidance on remediationcountermeasure plans regarding area requiring strengthening in security privacy. Monitor and report on remediationcountermeasure status monthly working with the remediation owners. Support GRC project activities as required to achieve unit level objectives these may include but are not limited to monitoring project progress, tracking non-compliant activities, resolving problems, publishing progress reports, remediation consultation, and driving remediation activities to completion. Improve technical and business process by studying current practices, identifying problems and recommending solutions. Support project managers as requested in performing daily, weekly, monthly, reviews and project updates. Maintain and expand current documentation for policy privacy compliance program activities as required in support of the daily operations. Perform other assigned tasks as need for the GRC Unit as requested by leaders.

Keywords: iSpace, Inc, Los Angeles , Information Security Analyst, Other , Los Angeles, California

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Other Other Jobs


Commercial Team Truck Driver Jobs
Description: US Xpress has a NEW Opening for Class A CDL Team Drivers. This is a unique, limited time opportunity
Company: US Xpress
Location: Yucaipa
Posted on: 12/4/2020

Have a CDL and looking for something better?
Description: Hiring CDL drivers in your area. Apply once and choose a trucking job that works for you. Get home when you want to, and get paid what you deserve
Company: Live Trucking
Location: Yucaipa
Posted on: 12/4/2020

Commercial Team Truck Driver Jobs: Earn up to 80 CPM!
Description: US Xpress has a NEW Opening for Class A CDL Team Drivers. This is a unique, limited time opportunity
Company: US Xpress
Location: Yucaipa
Posted on: 12/4/2020


CDL-a Team Truck Drivers
Description: US Xpress has a NEW Opening for Class A CDL Team Drivers. This is a unique, limited time opportunity
Company: US Xpress
Location: Yucaipa
Posted on: 12/4/2020

CDLA Team Driver Jobs
Description: US Xpress has a NEW Opening for Class A CDL Team Drivers. This is a unique, limited time opportunity
Company: US Xpress
Location: Yucaipa
Posted on: 12/4/2020

Dedicated, Regional & OTR Truck Driving Jobs
Description: Hiring CDL drivers in your area. Apply once and choose a trucking job that works for you. Get home when you want to, and get paid what you deserve
Company: Live Trucking
Location: Yucaipa
Posted on: 12/4/2020

Truck Drivers
Description: Hiring CDL drivers in your area. Apply once and choose a trucking job that works for you. Get home when you want to, and get paid what you deserve
Company: Live Trucking
Location: Yucaipa
Posted on: 12/4/2020

Food Store Shopper and Delivery Driver
Description: As a driver with Shipt, you are a bearer of good things - from groceries, to gadgets, to home
Company: Shipt
Location: Yucaipa
Posted on: 12/4/2020

CDLA Team Driver Jobs: Earn up to 80 CPM!
Description: US Xpress has a NEW Opening for Class A CDL Team Drivers. This is a unique, limited time opportunity
Company: US Xpress
Location: Yucaipa
Posted on: 12/4/2020

HIRING: Truck Drivers
Description: Hiring CDL drivers in your area. Apply once and choose a trucking job that works for you. Get home when you want to, and get paid what you deserve
Company: Live Trucking
Location: Yucaipa
Posted on: 12/4/2020

Log In or Create An Account

Get the latest California jobs by following @recnetCA on Twitter!

Los Angeles RSS job feeds