Information Security Analyst

Databank Imx - Bryn Athyn, PA

posted 3 days ago

Full-time - Mid Level
Bryn Athyn, PA
501-1,000 employees
Computing Infrastructure Providers, Data Processing, Web Hosting, and Related Services

About the position

The Information Security Analyst at DataBank IMX is responsible for maintaining multiple information security programs to ensure the protection of information assets. This role involves conducting risk assessments, implementing security controls, and collaborating with various departments to manage information security compliance. The position is integral to the company's mission of simplifying business processes while safeguarding sensitive information.

Responsibilities

  • Communicate security and risk-related concepts to technical and nontechnical audiences.
  • Conduct analysis, investigate, and recommend security technologies and process improvements.
  • Participate in analyzing asset risk and risk management processes, identifying acceptable levels of risk, and implementing risk treatment options.
  • Maintain information security documentation, policies, and procedures for compliance.
  • Implement processes for auditing and addressing non-compliance to information security standards.
  • Monitor and maintain a vendor risk management system, requesting supporting evidence and making risk evaluations.
  • Maintain a comprehensive enterprise information security and risk management program to ensure confidentiality, integrity, and availability of information.
  • Work with departments to ensure change management operations are maintained as they relate to IT or information security.

Requirements

  • 3+ years implementing, maintaining, and monitoring security controls within a recognized information security framework.
  • 3 - 7 years of experience in risk management, information security, and IT jobs, preferably in manufacturing, healthcare, or similar industries.
  • Experience with Governance, Risk, and Compliance (GRC) and HiTrust implementation.
  • Experience implementing or maintaining an ISO 27001:2022 Information Security Management System.
  • Working knowledge of IDS/IPS, firewalls, SIEM, EDR, vulnerability scanning, and other security-related technologies.
  • Experience implementing and maintaining NIST 800-53 security controls.

Nice-to-haves

  • Preferred working experience implementing and maintaining HiTRUST security controls.
  • BA/BS degree is a plus.
  • CISSP (Certified Information Systems Security Professional) or CISA (Certified Information Security Auditor) is a plus.

Benefits

  • 401(k)
  • Dental insurance
  • Disability insurance
  • Health insurance
  • Health savings account
  • Life insurance
  • Mileage reimbursement
  • Flexible Spending
  • Parental Leave
  • Paid Holidays
  • PTO
  • Volunteer PTO
  • Growth Opportunities

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service