The Security Compliance Analyst will be responsible for planning, implementing and maintaining security and compliance measures to ensure confidentiality, integrity and availability of computer systems, networks and data. This is a direct hire opportunity in Louisville, KY.
Responsibilities Include:
Establishes controls related to facility, data and system access by developing, maintaining, implementing and operating frameworks and policies.
Ensures access to systems, data and facilities is properly authorized, revokes access as required, reports violations, monitors information requests and recommends improvements to relevant policies, procedures and controls.
Establishes computer and mobile device security by developing, implementing and maintaining standards, policies, and procedures.
Develops security awareness by providing orientation, educational programs, and on-going communication.
Coordinating internal and external audits, preparing materials and coordinating work of independent auditors.
Develop, implement, and maintain policies and procedures to support compliance and privacy initiatives.
Educating, monitoring, auditing, advising and reporting of compliance and privacy efforts.
Creating, testing and implementing disaster recovery plans.
Performing risk assessments and testing of systems, policies and procedures.
Monitors, maintains and evaluates output of various security technical controls such as vulnerability scanning, security information and event management, and identity access management.
Requirements:
Minimum 3 years of combined IT and security work experience
Expertise in systems analysis, application development, database design and administration
Requires knowledge of security and compliance issues, techniques and implications across Windows server and desktop as well as Cisco and other networking technologies
Ambitious, innovative self-starter with curiosity and passion to produce high quality deliverables
Ability to manage multiple initiatives
Preferences:
CISSP, HCISSP, Security+ or CISM certification or equivalent security related certification is desired.
Experience with HIPAA and / or Sarbanes-Oxley a definite plus
Experience with the selection, implementation and maintenance of security related tools such as SIEM, vulnerability scanning, identity management solutions, patch management, endpoint management, and others is strongly desired
To apply for this job email your details to travis.arkon@newat.com
