Information Security Analyst

SKILLSET:

- 3+ years of related work experience in Information Security Governance, Customer Trust and/or Supplier Security in the tech industry.

- Excellent communication skills to proactively communicate with stakeholders to keep them up to speed on any issues.

- Understanding of information security frameworks and compliance requirements, such as ISO 27001/2 (including ISO 27017 & 18), SOC 2 Trust Services Criteria, GDPR.

- Has advanced knowledge of common security risks, vulnerabilities, and threats and can escort these issues through triage / risk treatment conversations.

- Have driven several security and/or operational Information security processes within a company.

- Experience reviewing and negotiating contracts as it relates to security and compliance obligations

- Experience with SOC 2 evidence gathering, ISO implementation, GDPR compliance

- Professional certifications in Information Security or Risk Management (e.g., CISA, CISM, CRISC,CGEIT, CSX-P, CISSP, CCSK) is a plus.

- Experience working in "Cloud\SaaS\PaaS\IaaS" Data protection solutions Infrastructure and Business Applications architectures

- Experience with vulnerability management and helping prioritize security related work.

- Working knowledge of Windows or Linux systems, related threats & incidents, DNS, Load Balancing, SSL, TCP/IP, networking, IDS and IPS, rest APis

- Experience with InfoSec compliance / cyber security in a fast paced high growth software product company.

- Ability to collaborate with other teams to solve complex cloud security problems.

- Experience in a high growth business environment is a plus.

- Bachelor's degree in Security, Computer Science, Management Information Systems or related field preferred.

- Experience with vulnerability management and helping prioritize security related work.