Senior Analyst, Information Security
WWE
Stamford, CTThis was removed by the employer on 5/21/2021 1:20:00 PM PST
Not to worry we have many other jobs on the site;
Browse all jobs
Browse the IS/IT Category
Search for Senior Analyst, Information Security jobs in Stamford-CT
Search all Senior Analyst, Information Security postings
Full Time Job
The Senior Analyst, Information Security drives the implementation, support, and management of critical security controls, cyber security programs, and risk management.
This position, working with the VP of Information Security and Technology Risk Management, will provide mentorship and assistance for the internal technology departments and Lines of Business (LoB) in the protection of critical systems and data assets. The role supports and maintains security standards and policies.
The successful candidate must possess in-depth knowledge of Information Security domains, security frameworks and methodologies. In addition to maintaining an understanding of new and emerging cyber threats and counter measures to mitigate risk.
Primary Responsibilities:
• Leads the development of Information Security programs for the organization
• Ensures the implementation of security controls and standards aligning with the NIST CSF
• Ensures security is embedded in all IT operations through appropriate applications of technologies, policies, and practices
• Evaluates existing and ongoing cyber security controls for effectiveness and efficiency
• Evaluates 3rd party services and security postures relating to IaaS, SaaS, and PaaS
• Evaluates and provides guidance in the implementation of security improvements for WWE managed IaaS and cloud-based platforms (AWS, Azure, O365, Google, etc.)
• Conducts security evaluations of both in-house and vendor provided applications
• Conducts routine evaluations of existing programs in association with DevSecOps and S-SDLC
• Conducts IoT security assessments, identifying any security gaps or risks
• Participates in conducting routine security assessments and annual penetration testing
• Supports security and data compliance programs
• Supports the organization's continuous cyber security and data privacy awareness
• Develops, defines, and provides Key Performance Indicators (KPIs) and metrics in support of senior management oversight
Qualifications:
• Four-year degree in computer science or related combined work/education experience
• 7+ years of experience in Cyber Security/Information Security with industry certification (CISSP preferred)
• Other industry certifications a plus (CCSP, CISM and CRISC)
• Knowledge of the Open Systems Interconnection model (OSI model) and NIST Cyber Security Framework (CSF)
• Experience in the implementation of CIS Critical Security Controls in a practical and detailed manner
• Knowledge of industry standards and security control sets including ISO 27001 and NIST 800-53
• Experience working within a global, IT organization and supporting IT infrastructures.
• Hands-on experience in supporting and maintaining cyber security tools and technologies, including IDS/IPS, UTM, WAF, NAC, DLP, SIEM, and other management and threat detection technologies
• Knowledge in cloud security architectures
• Solid grasp of TCP/IP, routing and switching technologies
• Knowledge in Microsoft Windows Server, file/folder access permissions and Active Directory Services (ADS) administration
• Knowledge of IoT security practices
• Experience in application security, user access permissions and controls
• Experience in data privacy regulations (GDPR and CCPA) a plus
• Capable of handling and coordinating multiple projects simultaneously
• Able to thrive in a fast-paced, deadline-based, constantly evolving environment while remaining organized and diligent to detail
• Phenomenal teammate with ability to work with individuals at all levels
#LI-GH1
_
WWE is an Equal Opportunity Affirmative Action employer and is subject to federal regulations pertaining to employment. WWE does not unlawfully discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity or expression, national origin, age, disability, marital status, veteran status, or any other basis prohibited under federal, state or local laws governing non-discrimination in employment in every location in which the Company has facilities. WWE also provides reasonable accommodation for qualified individuals with disabilities in accordance with the Americans with Disabilities Act (ADA) and any other state or local laws. For information about Privacy and Information Security for WWE employment candidates, please review our Candidate Privacy Policy. For information regarding Terms and Conditions for this and other WWE websites, please review our Terms and Conditions of Use.