Cybersecurity Analyst, IT Compliance

Marathon Petroleum - San Antonio, TX

posted 16 days ago

Full-time - Mid Level
San Antonio, TX
Merchant Wholesalers, Nondurable Goods

About the position

The Cybersecurity Analyst position at Marathon Petroleum Company LP is part of the IT Compliance team within the Cybersecurity Governance, Risk, and Compliance organization. The role focuses on ensuring compliance with PCI DSS and SOX IT regulations, as well as general IT compliance and control concepts. The successful candidate will work closely with various business partners to implement and represent control practices effectively, contributing to the overall security posture of the organization.

Responsibilities

  • Conduct controls analysis of IT business processes and systems, reporting impacts of changes to security systems.
  • Assist with the resolution of routine multi-functional technical issues and prepare cybersecurity assessments.
  • Continuously assess and improve IT control frameworks and compliance processes to enhance efficiency and reduce risks.
  • Evaluate the efficiency and effectiveness of security processes and controls to ensure data confidentiality, integrity, and availability.
  • Monitor networks, systems, and applications for potential cybersecurity incidents and identify compliance gaps.
  • Collaborate with stakeholders to develop appropriate remediation strategies for identified issues.
  • Administer and maintain security audits and reports of server access and activity; participate in disaster recovery planning.
  • Deliver and implement global security initiatives, policies, and compliance requirements while maintaining documentation of compliance activities.
  • Generate cybersecurity metrics and prepare reports for management, auditors, and stakeholders as needed.
  • Act as a liaison between IT, process owners, and internal/external audit groups to support audits and compliance testing.

Requirements

  • Bachelor's degree in information technology or a related field, or equivalent experience.
  • 2 years of relevant experience in Information Technology.
  • Experience in direct support of PCI and/or IT SOX compliance.
  • Knowledge of IT general controls, frameworks, and compliance assessment practices.
  • Professional certifications such as Security+, Network+, OSCP, GIAC, or CEH preferred.

Nice-to-haves

  • Experience with vulnerability management and penetration testing.
  • Familiarity with Security Information & Event Management (SIEM) tools.
  • Knowledge of cybersecurity risk management and threat analysis.

Benefits

  • Paid parental leave
  • Dental insurance
  • Tuition reimbursement
  • Paid time off
  • Vision insurance
  • 401(k) matching

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service