Sr. Cybersecurity Analyst

Acco Brands - Lake Zurich, IL

posted 5 days ago

Full-time - Mid Level
Lake Zurich, IL
1,001-5,000 employees
Merchant Wholesalers, Durable Goods

About the position

The Sr. Cybersecurity Analyst at ACCO Brands will serve as a subject matter expert in cybersecurity, focusing on the security and protection of information systems and data. This hybrid role involves engaging in cybersecurity control and process improvement, participating in incident response, and driving cybersecurity projects. The analyst will work closely with global teams to enhance security measures and ensure compliance with various regulations.

Responsibilities

  • Maintain up-to-date knowledge of the cybersecurity industry, including security solutions and threat vectors.
  • Build and maintain effective relationships with peers and internal business partners.
  • Lead and assist in creating effective controls to address security gaps and remediation efforts.
  • Perform daily monitoring and reviewing of cybersecurity systems, investigating events and incidents.
  • Recommend additional security solutions or enhancements for existing IT solutions to improve overall enterprise security.
  • Assist in implementing the cybersecurity roadmap and enhancing maturity.
  • Perform maturity and annual risk assessments for the organization.
  • Drive the Threat Vulnerability process to identify threats and make recommendations to mitigate vulnerabilities.
  • Partner with global teams to drive remediation of exploits and vulnerabilities that meet SLA requirements.
  • Drive and configure annual phishing and social engineering campaigns.
  • Participate in the planning and design of enterprise security strategy, processes, and procedures.
  • Lead and assist in driving security-related projects as applicable.
  • Investigate cybersecurity violations to assess breaches and preserve evidence.
  • Enhance the security education, training, and awareness program for the organization.
  • Assist in managing and executing a continuous incident monitoring program.
  • Perform control validation and remediation validation to ensure compliance with security policies.
  • Create periodic metric reports to demonstrate control effectiveness using monitoring tools.
  • Lead incident response activities, including discovery, investigation, containment, remediation, recovery, and closure.
  • Perform root cause analysis and create reports based on incident investigations.
  • Provide project support for IT and business initiatives to ensure security controls are integrated from the start.
  • Perform third-party security risk assessments and recommend remediation approaches.
  • Analyze system performance for potential security problems and prepare security reports.

Requirements

  • Bachelor's degree in information security or a related discipline.
  • At least 3 years of experience in vulnerability management and incident response.
  • Broad knowledge of networking, infrastructure, and application technologies, including SIEM.
  • General understanding of PCI DSS requirements and Gen AI risks and controls.
  • Preferred security certifications such as CISSP, CISA, or CEH.
  • Ability to work independently and as part of a team across all business units.
  • Understanding of business processes, internal control risk management, and IT controls.
  • Solid knowledge of information security risk and countermeasures.
  • Specific technical knowledge in Office 365, endpoint security, Windows security, and encryption technologies.
  • Experience with EDR/MDR/XDR technologies, email hygiene solutions, SSO, MFA, and next-generation firewalls is preferred.

Nice-to-haves

  • Experience interacting with a Managed Security Service Provider (MSSP) is a plus.

Benefits

  • Health insurance
  • Dental insurance
  • 401k plan
  • Paid holidays
  • Flexible scheduling
  • Professional development opportunities
  • Employee discount programs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service