Sr. Information Security Analyst

At Kinaxis, who we are is grounded in our common belief that people matter. Each one of us plays an important part in accomplishing our work, building our culture and making a global impact.

Every day, we’re empowered to work together to help our customers make fast, confident planning decisions. This is how we create a better planet – for each other, for our customers and for generations to come. Our cloud-based platform RapidResponse ensures that the products we need – everything from medicine and cars, to day-to-day items like toothpaste – make it to market and into our hands when we need them with minimal ecological footprint.

We make the world better, and you can too.

Job location: Chennai, India

What you will do

The Senior Information Security Analyst provides day to day guidance and mentoring to a team of Information Security Analysts.  This role will also have direct involvement in the creation and maintenance of Company-wide information security strategies. 

You will work closely with the cross functional teams within Kinaxis such as Corporate IT, SaaS Operations, Development, Business Systems teams, and technology partners to ensure security from the initiation stage through ongoing operations.

This role will report directly to the Senior Director, Global Information Security.  The team is responsible for all security related handling for Kinaxis Corporate and Kinaxis RapidResponse Software-as-a-Service.

• Curate our set of cybersecurity tools to discover threat agent actions
• Identifying potential threats - allowing for proactive defense before an actual incident
• Initiate the Security Incident Response Process
• Act as the primary control point during follow-up on significant information security incidents, oversee development of response plans, and provide timely update reporting
• Perform IT Risk & Security assessments and assist with developing information security strategies and appropriate policies
• Identify and propose key information security program priorities, initiatives, plans, practices and tools
• Provide guidance (e.g., information security risk severity assessments / relative cost benefit analysis etc.) and provide recommendations regarding prioritization of investments and projects that mitigate risks, strengthen defenses and reduce vulnerabilities
• Implement and support approved information security projects and internal/external security audits
• Guide the design and development of Kinaxis security framework
• Understand potential and emerging information security threats, and vulnerabilities and communicate this information to appropriate team members throughout the Company on a timely basis
• Assist with disaster recovery and business continuity planning
• Provide assistance to Sales and Support in relation to customer security inquiries, additionally producing customer consumable information specifically to assist with their understanding of how the Kinaxis RapidResponse service is secure and evolving to address the latest security risks affecting Software as a Service

What we are looking for

• Bachelor’s degree in Information Security, Computer Science, Information Management Systems, or relevant work experience
• Minimum 5 years of experience in IT Operations, IT Security, IT Audit or related area and 2 years in a senior role coaching and mentoring others
• Strong technical skills relevant to Information Security such as secure coding standards, ethical hacking techniques, security operations, cloud security architecture, SEIM, operating system security, vulnerability and threat management
• Strong knowledge and deep understanding of complex network security principles / network concepts such as (gateway, http proxy, vlans, dmz, VPN, firewalls, etc)
• Strong knowledge and skill across operating systems such as (Windows, Linux, VMWare)
• Familiarity with Information Security industry standards/best practices and relevant regulations (e.g. some of SSAE16, SOC 2, PCI DSS, HIPAA, GLBA, FISMA, NIST, ISO27000, CobiT, ISF, OWASP, SANS)
• Analytical and detail oriented
• Strong written and oral communication skills
• Ability to work on-call as required
• Ability to travel as required and possess a valid passport
• Successful candidate must be able to fulfill all security and confidentiality thresholds for this position (CGRP, etc.)

Desirable

• CISSP, CCSP, CCNA Security, Comptia Security +, CISM, or GIAC certifications
• Experience with Indicators of Compromise (IOCs), Indicators of Activity (IOAs) and attack Tools, Techniques and Procedures (TTPs), under the ATT&CK framework
• Use of forensic analysis tools such as those found in Kali Linux
• Microsoft Azure platform knowledge and experience
• Experience with various forensic log artefacts found in SIEM logs, web server logs, AV logs, protection logs such as HIDS and NIDS logs
• Experience with Sentinel or ELK
• Understanding of technology and security principles and possess knowledge of the cyber threat landscape

If you want to be part of a team that challenges you, moves fast, improves constantly, and makes a difference, let’s talk.

What we have to offer

• Challenging Work - We love solving highly complex problems. And as the global leaders in our industry, we never stop innovating—our work is never “done. That’s because across our teams and in all roles, every employee is empowered to bring their best ideas forward and to jump in and solve the problems they’re passionate about.
• Great People - We take our work seriously, but we don’t take ourselves too seriously! It’s in our DNA to celebrate, laugh, and have fun. We are stronger, together, when we are open, honest, and above all, real. Every person is valued here and plays an important role in our shared success.
• Global Impact - As a global team spanning continents, boundaries, and cultures, every day we are inspired by the impact our work has on our colleagues, our customers, our communities, and the world at large.
• Diversity, Equity and Inclusion - Diversity, equity and inclusion are more than words to us. They are the guiding principles for building a culture where we celebrate each others’ differences, continuously strive for equality and recognize that inclusion makes us stronger as individuals, a company and a global citizen. 

For more information, visit the Kinaxis web site at www.kinaxis.com or the company’s blog at http://blog.kinaxis.com/.

Kinaxis strongly encourages diverse candidates to apply to our welcoming community. We strive to make our website and application process accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact Human Resources at accommodations@kinaxis.com. This contact information is for accessibility requests only and cannot be used to inquire about the status of applications.