Information Security Associate
Fairfax, VA, USA
Full Time Mid-level / Intermediate USD 73K - 89K
Information Security Associate
at Tevora
Irvine, CA
If you haven't heard of Tevora, it's because we've done our job!
Tevora is a tight-knit community of professionals with a shared passion for our craft. Every day, we combine in-depth knowledge of cybersecurity, technology, and compliance to help create more secure digital environments. To Tevorans, every problem is a puzzle in need of solving. We strongly believe that if we put smart, driven people in a room together, they will accomplish great things. We maintain a supportive culture that celebrates continuous learning, diverse perspectives, and sharing the wins. That's why we have our eyes on you.
What's the role?
Tevora is seeking a Information Security Associate to join the Payments team. If you discovered that your professional strengths are found at the intersection between analytical thinking, effective communication, and technology, you will likely enjoy being a member on the Payments Team.
The Payments team works within the most technology-centric industry compliance frameworks and regulations. Our team works as Security Assessors who analyze security posture at a holistic systems view, while simultaneously analyzing the granular networking and system configurations that truly matter in preventing a breach.
Our team is looking for coachable individuals with potential, who envision themselves growing into seasoned professionals that possess an in-depth understanding of the current technological landscape and the capability to maximize their impact through effective communication skills.
A day in the life could include:
- Supporting organizations across a multitude of industries (including finance, healthcare, government, digital SaaS platforms, e-commerce, retail & restaurant, etc.) in the protection of payments data.
- Payments data we work with currently includes credit card data, debit card data, and SWIFT international banking transaction systems.
- Payments team is currently in its incubation phase for developing services to help protect cryptocurrency & blockchain-based systems.
- Providing General Advisement Services to help organizations navigate payments industry regulations upon changes to strategic initiatives, projects, and infrastructure architecture.
- Performing in-depth technology and process control assessments to validate adequate protection of credit card data and ensure compliance against the Payment Card Industry Data Security Standard (PCI DSS)
- Performing payment application (PA-DSS, SSF) technical control assessments in a lab environment to validate payment processing software used within payment applications are adequately protecting credit card data via appropriate use of cryptography, authentication, secure coding practices, and other software-centric security mechanisms.
- Conducting infrastructure security assessments against systems that make EMV 3-D Secure Assuming the technical supporting role with the Lead Assessor in client assessments.
- Performing data collection, evidence review, and authoring final reports delivered to the client.
- Analyzing evidence to identify control deficiencies, vulnerabilities, and security risks.
- Communicate directly with clients to support in coordination of data & evidence collection.
- Conducting interviews with client subject matter experts for data collection.
- Continuously developing knowledge and skillsets to eventually be promoted to Lead Assessor
- (3DS) payment transactions possible.
Necessary skills and qualifications:
- A bachelor's degree from a four-year accredited university with a major in Economics, Engineering, Finance, Mathematics, English, or other degrees that demonstrate analytical thinking and effective communication skills.
- Foundational knowledge in technology, which may include understanding of networks, servers, and/or software.
- Information security and/or technology certifications (e.g., CISSP, CISA, Security+, Network+, A+)
- Completion of accredited cybersecurity training program (e.g., bootcamps, post-graduate degrees)
- Aptitude for applying analytical/structured thinking and understanding technology.
- Strong communication skills, both verbal and written, and ability to interact confidently and effectively with clients and colleagues.
- Time management and accountability to commitments.
- Ability to work both independently and collaboratively as part of a team at all levels and across departments.
- Ability to travel to client sites when required.
- Professional demeanor in work environment
We've got you covered!
- Comprehensive benefits offering
- Paid time off and holidays
- 401k with Company match
- Vibrant work culture
- Growth opportunities
Additional requirements:
- A valid driver's license is required.
- Eligibility to work in the United States.
EEOC Statement
Tevora is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, disability status, or other applicable legally protected characteristics.
Tags: Banking Blockchain CISA CISSP Compliance Cryptography E-commerce Finance Mathematics PCI DSS SaaS Security assessment Travel Vulnerabilities
Perks/benefits: 401(k) matching Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Cybersecurity Analyst jobs
- Open Senior Cybersecurity Engineer jobs
- Open Security Operations Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Analyst jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Manager Pentest H/F jobs
- Open Information Security Architect jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Agile-related jobs
- Open Network security-related jobs
- Open Risk assessment-related jobs
- Open Analytics-related jobs
- Open SOC-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open SaaS-related jobs
- Open Java-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open PowerShell-related jobs