Sotera Health Services, LLC
Information Security Analyst
Sotera Health Services, LLC, Broadview Heights, Ohio, United States, 44147
Job Description
Information Security Analyst
Job Summary
As a member of the IT Security, Governance and Service Delivery team you will actively work with the Global IT team and other business partners. The position is responsible for participating in or leading the investigations, mitigation and resolution of information security events, alerts and incidents, performing security vulnerability and risk assessments, monitoring and measuring information security compliance, defining security requirements for various IT projects and testing and validation of security controls.
Key ResponsibilitiesProactive monitoring of the IT environment for security incidents, risks, and weakness.Respond to security alerts from multiple sources; includes triage, containment, and remediation.Performing information security incident response and investigations alongside other members of the Global IT team and other functional departments.Perform security vulnerability and risk assessments of information systems.Conduct various audits and coordinate information security assessments by third party partners.Defining security control requirements as a member of various IT project teamsTesting and validation of security controls.Participate in the development of information security policies and standards.Monitor external standards and best practices for Cybersecurity program advancements.Skills and Experience Requirements
Degree in Computer Science, IT Security or related field or equivalent work experience3+ years' work experience in the information security fieldOne or more of the following Information Security Certifications, or equivalent, preferred:
(ISC)2 System Security Certified Practitioner(ISC)2 Certified Information Systems Security Professional(ISC)2 Information Systems Security Architecture ProfessionalGIAC Security Essentials CertificationGIAC Security Leadership CertificationISACA Certified Information Security ManagerMicrosoft Certified Systems Engineer: SecurityCertified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM)
Strong technical knowledge of information systems including networking and telecommunications, Microsoft Windows Domains, application security, database security, etc.Knowledge of vulnerability and risk assessment methodologies and experience performing these assessmentsGood knowledge of information security practices, principles and standards (e.g. ISO, NIST)Strong organizational skills and multi-tasking capabilities in a fast-paced environmentOther Requirements
Strong analytical and problem solving abilitiesAbility to effectively prioritize and execute tasks in a high-pressure environmentProject ManagementStrong communications skills with the ability to present effectively verbally and in writing to small and large audiencesAbility to work cooperatively in a team environment
#LI-HYBRID
Information Security Analyst
Job Summary
As a member of the IT Security, Governance and Service Delivery team you will actively work with the Global IT team and other business partners. The position is responsible for participating in or leading the investigations, mitigation and resolution of information security events, alerts and incidents, performing security vulnerability and risk assessments, monitoring and measuring information security compliance, defining security requirements for various IT projects and testing and validation of security controls.
Key ResponsibilitiesProactive monitoring of the IT environment for security incidents, risks, and weakness.Respond to security alerts from multiple sources; includes triage, containment, and remediation.Performing information security incident response and investigations alongside other members of the Global IT team and other functional departments.Perform security vulnerability and risk assessments of information systems.Conduct various audits and coordinate information security assessments by third party partners.Defining security control requirements as a member of various IT project teamsTesting and validation of security controls.Participate in the development of information security policies and standards.Monitor external standards and best practices for Cybersecurity program advancements.Skills and Experience Requirements
Degree in Computer Science, IT Security or related field or equivalent work experience3+ years' work experience in the information security fieldOne or more of the following Information Security Certifications, or equivalent, preferred:
(ISC)2 System Security Certified Practitioner(ISC)2 Certified Information Systems Security Professional(ISC)2 Information Systems Security Architecture ProfessionalGIAC Security Essentials CertificationGIAC Security Leadership CertificationISACA Certified Information Security ManagerMicrosoft Certified Systems Engineer: SecurityCertified Information Systems Security Professional (CISSP)Certified Information Security Manager (CISM)
Strong technical knowledge of information systems including networking and telecommunications, Microsoft Windows Domains, application security, database security, etc.Knowledge of vulnerability and risk assessment methodologies and experience performing these assessmentsGood knowledge of information security practices, principles and standards (e.g. ISO, NIST)Strong organizational skills and multi-tasking capabilities in a fast-paced environmentOther Requirements
Strong analytical and problem solving abilitiesAbility to effectively prioritize and execute tasks in a high-pressure environmentProject ManagementStrong communications skills with the ability to present effectively verbally and in writing to small and large audiencesAbility to work cooperatively in a team environment
#LI-HYBRID