22 days old
2017-12-292018-01-26

Lead Security Analyst

Anaheim, CA 92805
  • Job Code
    593608

Job Summary:


The Lead Security Analyst works under minimal supervision to proactively develop enterprise security methodologies and implement company-wide processes that address and show adhereance to regulatory requirements, and that reduce risks to the company while driving efficiencies. They assess regulatory and technical security risk across the company and guide the development of remediation strategies. They contribute to the development, implementation, and maintenace of Security policies, standards, and processes that help identity and mitigate security risk. The Lead Security Analyst monitors, tracks, and reports on compliance to security requirements and works with the responsible parties to drive timely remediation. They advise departments on the company's security policies, standards, and processes. They leverage their strong knowledge of network and systems architecture to provide technical guidance on the secure configuration of the company's networking environment, operating systems, databases, directory services, web services, mobile computing and other technologies. They provide as needed training and awareness to company personnel. Also, leads inter-departmental and cross-functional working groups to ensure security requirements met.


Essential Functions:


1. Work proactively, under minimal supervision, to identify, develop, and implement needed company-wide security processes and methodologies.


2. Provide subject matter technical security expertise to company departments regarding the secure configuration of the network environment, operating systems, databases, directory services, web services, mobile computing etc.


3. Oversee and lead the development of technical security standards for various technologies such as network architecture, operating systems, databases, directory services, web services, mobile computing etc.


4. Serve as the subject matter expert for security related policies, standards, and regulatory requirements.


5. Contribute to the development and maintenance of the company's security policies, standards, and processes.


6. Conduct security risk assessments that analyzed both security controls and technical vulnerabilities. Provide as needed guidance to customers regarding their remediation plans and monitor remediation progress.


7. Provide leadership and oversight for assigned security domains.


8. Contribute to security risk identification, classification, and mitigation processes.


9. Advise departments on security regulatory requirements, security policies, and security best practices. Contribute to and provide security training and awareness to company personnel.


10. Contribute to the development of security metrics. Track, analyze, and report security metrics and propose countermeasures to address security trends that are not in line with the company's desired risk profile.


11. Contribute to the development and maintenance of the company's security controls framework. Research and stay abreast of emerging technologies, new vulnerabilities and exploits that may compromise the company's assets.


12. Investigate and propose technologies and methodologies that can enhance the company's security posture.


13. Contribute to and manage security projects and initiatives and ensure the desired outcomes are delivered on budget and on schedule.


14. Initiate and lead inter-departmental and cross-functional working groups to ensure security requirements met.


15. Develops and maintains documentation for all assigned responsibilities.


Physical Security


1. Responsible for continuing to implement, ensure compliance and track through metrics, the physical security program and governance


2. Provide thought leadership in areas of, but not limited to: physical security assessments and remediation, workplace violence prevention, physical security identity access management, local operational security oversight, physical security incident management, threat management, event protection, physical security committee, physical security project management and business requirements for implementation of camera's, badging system, visitor management systems, etc.


Minimum Position Qualifications:


- Bachelor's degree or equivalent experience, with a degree in Information Technology, Information Security, Management Information Systems, or related area a plus.


- Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) a plus.


- 10+ years hands-on information security risk management and hands-on technical security experience.


- 3+ years consecutive hands-on experience configuring, utilizing, and interpreting industry leading network, application, web, database, and host vulnerability technologies, and serving as the technical security subject matter expert for remediation.


- Strong working knowledge of security related regulations/control frameworks, with HIPAA, HITECH/Meaningful Use, HITRUST, COBIT, or COSO knowledge a plus.

Categories

  • Information Technology

Randstad utilizes a technology-driven focus with a human touch to provide better staffing and business solutions to organizations around the world. Our team of experts match professionals with available career opportunities in a variety of fields.

Featured Jobs

Career News

Before you go...

Our free job seeker tools include alerts for new jobs, saving your favorites, optimized job matching, and more! Just enter your email below.

Share this job:

Lead Security Analyst

Randstad Technologies
Anaheim, CA 92805

Share this job

Lead Security Analyst

Randstad Technologies
Anaheim, CA
US

Separate email addresses with commas

Enter valid email address for sender.

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast