Information Security Engineer / Analyst

· 3-7 years of experience in Information Security focusing on security solution design, engineering, implementation and assurance.

· 3-5 years of experience defining and managing the implementation of controls to address access security and IT control requirements.

· 3-5 years of experience working with Information Security and IT general controls, including experience defining and documenting controls using COBIT 4.1 or 5.0, the NIST Cybersecurity Framework, the ISO 27k framework, the SANS 20 critical controls or similar experience.

· Deep understanding of Information Security technologies including firewalls, IDS/IPS, Password Vaults, CASBs, SIEM, IT GRC, DLP, etc.

· Understanding of the regulatory environment and experience with regulators.

· Comfort delivering tasks and assignments in an evolving and a maturing environment.

· Application security experience and corresponding technologies (e.g. Jenkins).

· Experience with the FFIEC Cyber Security Assessment Tool.

· Applicable certifications (e.g. CISSP, CISA, CISM, CGEIT, CRISC).

All your information will be kept confidential according to EEO guidelines.