Sr. Analyst - Vendor Security

4 days left

Employer
Location
Brooklyn Park, Minnesota, United States
Posted
Feb 04, 2017
Closes
Feb 27, 2017
Category
Business, Other
Employment Status
Full Time
JOIN US AS A SENIOR ANALYST, INFORMATION RISK MANAGEMENTAbout This Opportunity

Lead, facilitate, analyze, execute, govern and represent plans or identified approaches within Information Risk Management, and be the liaison to key partners on initiatives within the organization.

Use your skills, experience and talents to be a part of groundbreaking thinking and visionary goals.  As a Senior Analyst, you'll take the lead as you…

• Perform vendor security assessments, drive remediation, and partner with teams across the company

• Provide subject-matter expertise in 3rd party risk management

• Demonstrate strong knowledge in IT controls, risk assessments, and the design and testing of security measures

• Be a thought leader in Information Security and align initiatives with business objectives of the company

• Conduct analysis and trending (reports, dashboards, status…etc.) on internal or external progress or events affecting information security

• Work closely with cross-functional teams and develop strong liaison relationships

• Support audit processes, as required

• Participate in special projects/research and prepare management reports

Requirements:

• Bachelor's degree

• 4-6 years of information security experience

• In-depth knowledge of security assessment/audit principles

• Basic understanding of networking principles and data protection

• Ability to identify problems, analyze data and present conclusions

• Strong verbal, written and presentations skills

• Excellent PC skills (Excel, Word, Adobe, SharePoint)

Desired Skills:

• Knowledge of HIPAA, PCI, SOX, GLBA or other regulations with information security requirements is preferred

• Knowledge of information security frameworks such as ISO, HiTrust, or PCI is preferred

• CISSP, CISA, CIPP, or other security certifications (or willingness to obtain security certifications) preferred

• Experience using the Archer GRC tool