Security & Compliance Analyst
1+ year contract (STRONG possibility to perm)
If interested, please send resume to firstname.lastname@example.org
Designs, Implements, administers, and reviews systems and procedures to ensure the protection and safety of information systems assets, including the prevention of intentional or inadvertent access, modification, disclosure or destruction of information or systems. Support the organization in the planning, development, administration, and remediation of the division's activities related to Information Security Processes and Regulatory compliance.
Researches, recommends, and implements changes to procedures and systems to enhance information systems security.
Identifying security risks and exposures by participating in security reviews, evaluations, and risk assessments.
Responsible for program improvements related to Information Security.
Tracks current and impending legislation, regulations and best practices to ensure the security program incorporates and addresses key issues.
Ensure timely proactive identification and reporting of security gaps and vulnerabilities to the critical business information, systems and network infrastructure.
Assist with security compliance audits to verify completeness of required configurations and verify system hardening.
Provides guidance and direction both within IT and among users for the physical protection of information systems assets and corporate information and intellectual property assets.
Provides leadership and oversight to others on the team.
Provides expert level research and analysis for planning, organizing, and managing PCI security functions.
Participate in day-to-day information security activities as they relate to PCI such as questions, problems, exceptions, etc.
Conduct compliance assessments with key business partners and creates the necessary documentation for evidence in PCI DSS, for areas of concern such as threats, vulnerabilities, processes, controls and impacts on critical assets
Qualifications and Education Requirements
Bachelor’s degree with emphasis in Computer Science, MIS, Auditing, Finance or Business. Minimum of 5 years of relevant work experience required. Experience with compliance and information security. IT, Audit or Project Management background helpful. Knowledge of software development life cycle. Security Certifications helpful (CISSP, CISM, CRISC, CISA, etc..) Working knowledge of networking technologies, including: IP Addressing, routing, switching, load balancing, DNS, DHCP, NAT rules. Knowledge of information security methodologies. Experience with system, security and network monitoring tools
Apex is an Equal Employment Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by law. Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Employee Services Department at 844-463-6178