Kronos Incorporated

Senior Information Security Analyst (Risk, Incident Response)

Security Analyst in Lowell, MA

Posted 2018-11-13
Description

Description

This position works as part of a security team responsible for ensuring that the company's information resources are secure from unauthorized access, protected from inappropriate alteration, physically secure, and available to users in a timely fashion. This position serves as an internal information security consultant and will be responsible for designing, implementing, supporting and maintaining policies and security solutions in both operational and customer hosted environments. This position demands an organized, action-oriented team player with the ability to prioritize daily work and support on multiple initiatives simultaneously; strong communication and customer focus is required.

RESPONSIBILITIES
• Serves as an internal information security consultant to the organization, providing guidance and support for business inquiries, requests.
• Provide support for IT projects, identifying risk specific to the project, and actions necessary for remediation including recommendations for logical access controls, secure application configuration, general secure data handling processes.
• Supports the development, implementation, and management of security policies/procedures to ensure they remain aligned with business objectives/meet regulatory requirements.
• Supports the development, implementation and management of security knowledgebase to include all company products, environments.
• Responds to security incidents raised by the user community including phishing attempts, malware outbreaks, unauthorized access attempts.
• Execute and support vulnerability scanning applications including the configuration of scan sites, scheduling of scans, production of reports, interpretation of results.
• Provides expertise and support to ensure company’s security framework remains in compliance with applicable regulations including evolving data privacy regulations.
• Provides support with third party security risk assessments/IT audit and provides tracking for findings, resolution.
• Provides expertise in support of new product development activities to ensure products comply with information security, privacy standards.
• Perform additional duties/projects as assigned by management.

Qualifications

• BS/BA degree in Computer Information Systems/Management Information Systems or related discipline or equivalent experience and 5-7 years related work experience in information security governance and/or related functions (such as IT audit and IT Risk Management).
• Excellent verbal/written communication skills in order to develop positive relationships/effectively communicate with employees, customers, auditors, business partners, all levels of management.
• Excellent analytical skills in order to identify security risks and appropriate measures needed to help mitigate those risks. Must be comfortable in conducting independent research of issues and inquiries to provide guidance when requested.
• Experience with system implementations, identification of security related risks and development of recommended actions for remediation.
• Experience with Security Incident Response including hands on involvement in detection, analysis, containment and remediation phases.
• Experience with information security management frameworks such as AT101 SOC 2, ISO, ITIL, CobiT, NIST to include development of policies, process and procedures within the environment.
• Experience designing and implementing controls within corporate networks to include computer/network security and operating systems such as UNIX, Linux, and WINDOWS, as well as LAN/WAN internetworking protocols such as TCP/IP and network perimeter protection (firewalls).
• Strong technical background/experience with a variety of information security systems/tools like vulnerability management, intrusion detection/prevention, cloud access security broker, anti-virus/malware, data loss prevention.
• CISA, CISM, CRISC, CISSP, or similar security certification required.

Ready to be seen?

Apply now to have the opportunity to be considered for similar jobs at leading companies in the Seen network for FREE.

Company summary

We believe great businesses are powered by great people. Guided by decades of experience and innovation, Kronos® offers the industry’s most powerful suite of tools and services to manage and engage your entire workforce from pre-hire to retire. And because workforce needs are constantly changing, Kronos solutions are designed to evolve with you to help meet the challenges you face every day — regardless of your industry or where you do business.

With more than 6,000 Kronites worldwide, Kronos is dedicated to meeting the growing needs of today’s multinational organizations. In fact, upwards of 40 million people at more than 30,000 organizations around the world rely on Kronos workforce solutions every day.

Perks

Work for a “Best Place to Work" (Source: Glassdoor), many "Great Place To Work" awards in the US, Canada, UK, Australia...
Unlimited paid-vacation policy (in US, Canada and a couple of more countries)

Tech Stack

Java & JavaEE, Springboot, Spring MVC, Jenkins, Maven, Docker, Kubernetes, Google Cloud
TypeScript, Angular JS, Angular, JavaScript, HTML
Linux, SQL, Oracle, PostgreSQL, REST, SOAP/XML API's

Interview process

We try our best to maximize the hiring process
Usually our hiring process is as following:
- 1st Step: phone discussion with a KRONOS recruiter
- 2st Step: face-to-face or video conference. Technical and / or soft skills based interview

Be seen in a new Security Analyst job

Skip the search

Zero stress and one profile that can connect you directly to 1000s of companies.

Best-fit jobs—for you

We’ll take it from there. After you tell us what you’re looking for, we’ll show you off to matches.

Free Career Coaching

Boost your interview skills, map your tech career and seal the deal with 1:1 career coaching.

You get tech. We get you.

Join now and be seen.