Job Description
Job Title: Security Analyst - SNEI SD-23164
Job Area: Information Technology
Primary Location: CA-San Diego
The Security Analyst will work closely with other members of the Security Team to gather control information to support the Security Program and SNEI Common Control Framework metrics and reporting. The Security Analyst will ensure that security requirements and controls are properly and timely identified, mapped, tracked, reviewed, and reported for the organization to increase its security posture. The Security Analyst will also ensure that documentation, assessment information, and controls are kept up to date.
Responsibilities
- Works with security management to develop and maintain the SNEI Common Control Framework.
- Works with GRC tools to ensure security and risk information is collected and kept up to date.
- Helps track issues, work requests, test results, and remediation.
- Monitors and reviews security controls to identify operational effectiveness.
- Helps design new controls for addition to the SNEI Common Control Framework and works with Security team members to implement these controls effectively.
- Gathers and collects security information to provide timely security control reports for security management.
- Maps policies, procedures, and processes to controls to ensure adequate control coverage.
- Performs process and control walkthroughs and documents control narratives as assigned.
- Maintains the vulnerability management programs.
- Ensures that assets are tracked and appropriate controls are applied.
- Helps develop remediation lists and tracks completion of work done to remediate control deficiencies.
Qualifications
- Bachelor's degree in computer science or other related field
- 3+ years technical experience with emphasis on security
- Proficient in industry standard compliance programs (SOX, PCI)
- Ability to identify, monitor and remediate security compliance issues.
- Hands-on experience working with GRC tools and enterprise software, a plus.
- Ability to complete assigned work on time and to specifications.
- CISSP, CISA, CISM, or other certifications preferred.
Click here to search and apply for this position at Sony Career Site
0 comments:
Post a Comment