Lead Analyst - Vendor Security

3 days left

Employer
Location
Brooklyn Park, Minnesota, United States
Posted
Jun 29, 2017
Closes
Jul 29, 2017
Category
Business, Other
Employment Status
Full Time
JOIN US AS A LEAD ANALYST, INFORMATION RISK MANAGEMENT


About This Opportunity

Join an industry leading vendor security team as we implement cutting-edge approaches to assessing and managing third party information security risk.  Use your unique skills and experiences to protect Target's guests, brand, and employees from evolving security threats.  As a Lead Analyst, you'll will be responsible for, but not limited to…

• Gain and demonstrate an in-depth understanding of the significant vendor relationships with the Infrastructure and Digital business

• Assist other Analysts and Senior Analysts with answering questions, prioritizing assessment activities, and driving completion of work

• Perform vendor security assessments, drive remediation, and partner with teams across the company

• Provide subject-matter expertise in 3rd party risk management

• Demonstrate strong knowledge in IT controls, risk assessments, and the design and testing of security measures

• Work closely with cross-functional teams and develop strong liaison relationships

• Be a thought leader in Information Security and align initiatives with business objectives of the company

• Participate in special projects/research and prepare management reports

• Support audit processes, as required


Requirements:

• Bachelor's degree

• 6-8 years of information security experience 

• Technical understanding of security assessment and audit principles

• Technical understanding of networking principles and data protection controls

• Ability to identify problems, analyze data, and present conclusions 

• Strong verbal, written and presentations skills

• Excellent Excel, Word, PowerPoint, and SharePoint skills


Desired Skills:

• Knowledge of HIPAA, PCI, SOX, GLBA or other regulations with information security requirements

• Knowledge of information security frameworks such as ISO, HITRUST, or PCI

• CISSP, CISA, CIPP, or other security certifications

• Experience using the Archer GRC tool

More jobs like this