Information Security Analyst

Information Security Analyst

Job Description:

Join a leading financial services organization dedicated to enhancing the efficiency and transparency of the financial market. We are seeking an Information Security Analyst who will play a critical role in protecting our company's information assets. The ideal candidate will possess a thorough understanding of risk assessment and regulatory compliance, with a proven track record of developing and enforcing security policies and procedures. This position offers a unique opportunity to work on various security initiatives while collaborating with a talented team. You will be responsible for ensuring compliance with SEC Regulation SCI and ISO 27001, developing new policies to counter emerging threats, and conducting regular assessments to guarantee the effectiveness of our security measures. If you are passionate about cybersecurity and eager to contribute to a secure financial environment, we invite you to apply.

IT Languages:

• Python
• Java
• SQL

As an Information Security Analyst, you will undertake a variety of responsibilities aimed at bolstering the organization's security posture and ensuring compliance with applicable regulations.:

Review and enhance existing security policies to align with SEC Regulation SCI and ISO 27001 requirements.;; Develop and implement new security policies addressing emerging threats and compliance changes.;; Assist in organizing external risk assessments, document identified risks, and develop risk mitigation strategies.;; Conduct audits to ensure effective access controls are in place, particularly during personnel transfers and third-party engagements.;; Enhance incident response plans and ensure business continuity and disaster recovery plans are well-defined.;; Implement data loss prevention controls and encryption protocols to protect sensitive data.;; Conduct regular training sessions on security awareness, including insider threat and incident response.;; Establish and enforce security requirements for third-party vendors and conduct periodic assessments.;; Manage security information and event management (SIEM) systems to monitor for security incidents.;; Conduct vulnerability assessments and penetration testing to identify and address security weaknesses.

Spoken Languages:

• English;; Spanish

Skillset:

• Risk assessment
• Regulatory compliance
• Security policy development
• Incident response
• Data protection technologies
• SIEM management

Soft Skills:

• Analytical thinking
• Attention to detail
• Problem-solving
• Effective communication
• Team collaboration

Qualifications:

• Bachelor's degree in Information Security, Cybersecurity, or a related field; Advanced degree preferred
• Relevant certifications such as CISSP, CISM, CISA, or ISO 27001 Lead Implementer are highly desirable
• Demonstrated experience with regulatory compliance, particularly SEC Regulation SCI requirements
• Expertise in ISO 27001 standards and risk assessment methodologies

Years of Experience:

5

Location:

United States

Job Benefits:

• Flexible working hours
• Remote work opportunities
• Professional development programs
• Health insurance
• Retirement savings plan

Working Conditions:

Full Time

Employment Type:

Contract

Company Culture:

• We foster a collaborative and innovative environment where employees are encouraged to share ideas and contribute to the overall success of the organization. Our team values transparency and integrity, ensuring that everyone works towards common goals while maintaining a healthy work-life balance.

Opportunities For Advancement:

• Potential for contract renewal, Opportunity to lead security initiatives, Pathway to full-time employment

Visa Sponsorship:

Available