IT Security Analyst

The IT Security Analyst will safeguard the organization's information technology systems, networks, and data from potential threats and vulnerabilities. The primary goal of the IT Security Analyst is to ensure the confidentiality, integrity, and availability of the company's digital assets, as well as protect against unauthorized access, data breaches, and cyber-attacks.

 

The IT Security Analyst is responsible for monitoring and assessing the organization's IT infrastructure to identify and mitigate security risks. They play a crucial role in developing and implementing security measures, policies, and procedures to maintain a secure technology environment. Additionally, they are involved in detecting and responding to security incidents promptly, conducting security audits and assessments, and providing expertise in addressing security-related concerns.

 

Additionally, an IT Security Analyst is to proactively protect the organization's technology resources and support the organization in maintaining compliance with relevant industry standards, regulations, and best practices, thereby contributing to the company's overall success and reputation.

 

KEY ACCOUNTABILITIES

• Participate in both project and operationally focused work regarding end user Security Protection technologies and implementing standards/processes. Participates in the implementation of recommendations arising from vulnerability assessments and other potential threats. 
• Provides security event monitoring and incident management support and will be required to serve as an incident manager as part of DP World’s IT Incident Management process.
• develops communications and actively promotes information security awareness among all staff and advises internal organizations on best practices for securely managing information as well as assists with the design & implementation of a formal security awareness/training program for Information Security & Compliance.
• Monitors all types of access to protect the confidentiality and integrity of customer and employee data and ensures compliance with organization policies and standards. 
• Provides input to audit log requirements/designs and periodically checks audit logs to ensure these are being maintained to agreed retention levels.
• Responsible for coordinating security assessments. Coordinates and report on the results of penetration testing, proactively identifies and mitigates both internal and external threats to DP World’s information landscape and assists in the development of security checklists.
• Responsible for network security and performing onsite IT Security audits.
• Responsible for IT risk management by maintaining a risk/control framework that accurately reflects the IT control environment and alignment to the Information Security Policy and standards and provides recommendations on risk assessment and collaborate with legal and audit teams on items related to security & compliance.

QUALIFICATIONS

• A bachelor's in computer science or IT Security or a combination of equivalent professional training and security industry certifications, combined with a minimum of three years related work experience in a position(s) with increasing responsibility may be accepted.
• Full English and Spanish written and spoken proficiency are required.

 

EXPERIENCE 

• Experience in information technology that encompasses a variety of roles, such as working with SIEM, Data Loss Protection, Vulnerability Management, Forensics, IDS/IPS, privilege and identity management as well as software and security architectures, like NISt and ISO27001.
• Thorough knowledge of information security principles and practices.
• Knowledge of industry standard processes (SDLC, CMMI, Change Management, ITIL, OWASP), methodologies, standards, best practices and encryption methods and techniques.
• Understanding of network and host-based intrusion detection (NDS/HDS), non-repudiation, access control, network security, threat modelling, SSL / TLS, Digital Signatures, auditing architectures, application vulnerabilities and Public Key Infrastructure (PKI) is desired
• Understanding of methods and models within information security & compliance to include risk analysis and mitigation, policies, regulatory environment, technologies, architecture, and best-practices.

  ABOUT DP WORLD We are the leading provider of worldwide smart end-to-end supply chain & logistics, enabling the flow of trade across the globe. Our comprehensive range of products and services covers every link of the integrated supply chain – from maritime and inland terminals to marine services and industrial parks as well as technology-driven customer solutions.
  We deliver these services through an interconnected global network of 128 business units in 74 countries across six continents, with a significant presence both in high-growth and mature markets. Wherever we operate, we integrate sustainability and responsible corporate citizenship into our activities, striving for a positive contribution to the economies and communities where we live and work.
  Our dedicated, diverse and professional team of more than 100,000 employees from 160 countries is committed to delivering unrivalled value to our customers and partners. We do this by focusing on mutually beneficial relationships – with governments, shippers, traders, and other stakeholders along the global supply chain – relationships built on a foundation of mutual trust and enduring partnership.
  We think ahead, anticipate change and deploy industry-leading technology to further broaden our digital vision to disrupt world trade and create the smartest, most efficient and innovative solutions, while ensuring a positive and sustainable impact on economies, societies and our planet.