Timber Products Company - Medford, OR
posted about 1 month ago
Full-time
Onsite - Medford, OR
Wood Product Manufacturing
About the position
The Information Security Analyst will be responsible for researching, proposing, implementing, and monitoring systems and data security in accordance with industry best practices. This role serves as the subject matter expert in information security and leads the information security team to ensure the confidentiality, integrity, and availability of the company's information systems.
Responsibilities
- Oversee and assure company-wide information security and maintain environment confidentiality, integrity, and availability.
- Actively monitor systems activity to identify suspicious activity and respond accordingly, correlating and validating alerts.
- Support and uphold Timber Products' information security program by implementing tactical solutions and investigating potential cyber security incidents.
- Serve as the incident response manager, maintaining the incident response plan and policies, and developing incident playbooks.
- Develop, implement, and enforce company-wide security policies and procedures to ensure consistent security practices across the organization.
- Prepare reports documenting potential and realized cyber security incidents, outlining threats and suggesting mitigating actions.
- Perform regular assessments of the company's systems environment to identify, classify, and address potential security risks.
- Conduct IT and End User training on Information Security topics, preparing training materials and managing the security awareness training platform.
- Monitor the threat landscape regarding products used and recommend architectural, procedural, and policy changes to mitigate risks.
- Work with security toolsets and trusted vendors to protect the data environment from unauthorized access.
Requirements
- 4 years' experience in Information Security or a comparable position.
- B.S. Degree in Cyber Security, Computer Science, or related field preferred.
- Experience working in the cyber security field.
- Information Security related certification such as CISSP is a plus.
- Effective communication skills with users, team members, and management.
- Ability to research and diagnose security risks and system problems.
- Strong conceptual, analytical, and problem-solving abilities.
