Sr. Security Analyst

East Bay, CA

Posted: 03/18/2019 Employment Type: Direct Hire Industry: IT Job Number: JOS000008245

The Senior Information Security Analyst position will be responsible for all IT security governance here at the company. S/he will maintain and enhance a comprehensive information security strategy that is aligned with the company’s business goals. This position will manage all aspects of the company’s security program, collaborating with several functions of the business (Legal, Quality, R&D, HR, etc). S/he will drive internal audits to manage potential vulnerabilities and propose/execute solutions to mitigate any risk.  S/he will routinely audit existing and new external partners, ensuring that the company’s data is protected at the highest levels. This company is looking for a seasoned security analyst with a tremendous passion and leadership in IT Security. 
 
Professional Experience/Background to be successful in this role:  

  • Previous experience in Medical Device or Healthcare company is required  
  • Deeply familiar with HIPAA Compliance, Sarbanes Oxley (SOX), NIST cybersecurity framework, ISO 27000 security standards, SOC2, FedRAMP and data protection regulations and requirements  
  • 7 years experience in an information security related role, such as security analyst or security auditor  
  • 5 years experience conducting security control assessments or audits  
  • Strong problem-solving skills, written and verbal communication skills  
  • Professional security management certification is desirable, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar certification  
  • Bachelor degree in Information Systems, Information Technology, Computer Science (or professional experience working in Enterprise IT) or equivalent experience. 

Key Accountabilities:  

  • Responsible for all aspects maintaining and managing security policy, risk management, third-party security, and cloud security.  
  • Responsible for the development of security governance and risk management in terms of continuous monitoring, executive reporting and enterprise risk management.  
  • Working with business partners to research compliance regulations that have potential impacts on the business.  
  • Evaluate security controls to ensure effectiveness and regulatory compliance, including managing the security control remediation efforts.  
  • Lead all internal/external security assessments. 

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.