Analyst II - Information Security

Start your journey with BCD: Grow, connect, collaborate and celebrate with our global team

Analyst II, Information Security (Remote)

Full time, United States

The Information Security Governance Analyst II will advancing the company-wide information security governance function by encouraging a fusion of business risk and information security practices. The Governance Analyst II will support and enforce security controls in alignment with the established security policies, procedures, guidelines and leading best practices. Must have a strong knowledge of security and privacy frameworks such as ISO 27001, NIST, PCI DSS, SOC 2, GDPR, CCPA, etc.  

The successful candidates will work closed with numerous stakeholders to evaluate security risks, develop strategies, and oversee governance-related activities. The right candidate will also establish, measure, and manage security metrics to evaluate performance of the security program and global security posture. The candidate will also maintain a body of documentation that forms the governance program, policy, standards, and controls that will drive the maturity of the security program. 

As an advocate the information security, the Governance Analyst II will advance governance, risk and compliance to support and influence a culture of proactively managing security business risks. 
 

As an Analyst II, Information Security, you will

• Use a teaching/education approach to help users understand their risks and better protect information and systems
• Analyze and report opportunities to integrate security into daily business operations
• Provide high quality customer service by listening and understanding the needs of the users
• Study and understand the core functions and services that are provided by the business
• Be familiar with the security requirements and controls needed to maintain the business operations
• Assess gaps and develop remediation plans
• Integrate and implement security requirements into business requirements
• Stay current with industry trends and emerging technologies relating to Information Security

About you

• Bachelor’s Degree (B.A., B.S.), or equivalent combination of education and experience in Information Security, Cybersecurity, Computer Science, Information Technology, Engineering, Communications, or related field
• 3+ years of experience working in one or more of the following fields: computer science, information /cyber security, computer information systems, etc. 
• Strong understanding of security governance principles, including policy development, security controls, risk management, and incident response. 
• Strong knowledge of security and privacy frameworks such as ISO 27001, NIST, PCI DSS, SOC 2, GDPR, CCPA, etc.  
• Strong organizational, time management, decision making, and problem solving skills
• Security industry relevant certifications such as CISSP, CISA, CISM, CRISC or similar certifications. A PMP …