IT Security Analyst

Job description

For a leading Fashion Company we are looking for

IT Security Analyst

reporting directly to the Manager of IT Security & Compliance

Major Responsibilities:

• Supports the design and architecture of secure solutions for new business initiatives
• Promotes security standards, policies and best practices to IT and the business departments
• Works with both internal and external auditors to ensure compliance with all government and industry mandated regulations including, but not limited to, SOX, PCI, and GDPR
• Conducts 3rd party vendor assessments
• Reviews IT solutions for compliance standards
• Monitor security across more than one IT functional area (e.g., data, systems, network and/or Web) and across the enterprise
• Assists in the development and implementation of security policies and procedures (e.g., user log-on and authentication rules, security breach escalation procedures, security auditing procedures and use of firewalls and encryption routines)
• Assists in the development and implementation of security solutions based on the enterprise standards
• Prepares status reports on security matters to develop security risk analysis scenarios and response procedures
• Responsible for tracking and monitoring security events and incidents
• Enforces security policies and procedures by administering and monitoring security profiles, reviews security violation reports and investigates possible security exceptions, updates, and maintains and documents and security controls
• Involved in the evaluation of products and/or procedures to enhance security effectiveness
• Collaborate and periodically align with the Global team to maintain the security standards across the company

 Job Requirements:

• Preferred certifications ISO27001, CEH, Security+, ITIL
• Bachelor’s Degree in Computer Science, Information Systems, other related field, or equivalent work experience
• Typically has 4 to 5 years of combined IT and security work experience with a broad range of exposure to network, server infrastructure, systems analysis; 1 to 2 years of experience with information security
• Proven history of ensuring compliance with SOX, GDPR, and PCI
• Requires knowledge of security issues, techniques, and implications across all existing computer platforms
• Must have extensive knowledge in networking, databases, systems and/or Web operations
• Experienced in security administration, management of security projects and complicated security issues

 Education and/or Experience:

• Bachelor’s Degree or equivalent
• Candidate must have mid-level knowledge of capturing and documenting Functional Requirements, Test Scripts and System Documentation
• Must have strong communication skills – verbal and written
• Must be familiar with general security controls and incident management
• Must be familiar and able to define and build documents using MS Office products (Word, Excel, Power Point, Project, Visio)
• Excellent time management skills including the ability to manage multiple projects at any given time
• Ability to analyze problems and propose solutions
• Innovative thinking and vision
• Ability to work in a fast-paced, dynamic environment
• Keen to work in a diverse and global team.

They are an Equal Opportunity Employer M/D/F/V

Workplace: Novara