Information Security Analyst - Remote
Los Angeles, California, United States - Remote
Applications have closed
EVOTEK™ is North America's premier enabler of digital business with a focus on innovation. With technology offerings in data center and cloud, EVOTEK is uniquely equipped to enable customers with the industry shift from traditional IT computing to secure multi-cloud. With services practices in cybersecurity, mobility, platform engineering and AIOps, EVOTEK is moving up the value chain, closer to the part of digital business that matters most. EVOTEK was named to Inc. Magazine’s “Best Places to Work” in 2018 and 2020. For five consecutive years, from 2016-2020, EVOTEK was listed in The San Diego Business Journal's “Best Places to Work” and recognized in CRN's “Solution Provider 500” list, CRN's “Next-Generation 250” list, CRN’s “Triple Crown” and highlighted as CRN's “Top 150 Growth Companies”, holding the #1 spot in 2017 as the fastest growing system integrator in the country. In 2020, EVOTEK was named to the Inc. 5000 list as one of the fastest growing companies in America.
The Security Analyst is responsible for specific aspects of the security program including regulatory reporting, metrics/KPIs, training and awareness, security process integration and risk management for our clients . Protects computer assets by establishing and enforcing system access controls; maintaining disaster preparedness.
- Document, maintain and analyze compliance with IT controls, standard procedures, and policies
- Demonstrate excellent customer service skills, build credibility and rapport with client technical teams
- Assist in periodic information risk assessments and audits to ensure that information systems are adequately protected to meet security objectives
- Assist in collecting security-related evidence for external audits
- Provide technical expertise during IT security incident response
- Support IT security inquiries from customers
- Assist in the review of vendor IT security programs and controls
- Assist in tracking and maintenance of action plans for the resolution of issues identified during assessments and audits. Provide needed assistance with the execution of those remediation plans.
- Ensure authorized access by investigating improper access; revoking access; reporting violations; monitoring information requests by new programming; recommending improvements
- Establish physical security by developing standards, policies and procedures
- Advise on risk levels and security posture through a risk management framework
- Identify business processes requiring information security Integration
- Support the design and execution of security exercises
Requirements
- Analytical mindset to be able to make sound recommendations on Operational Risk issues
- Technical knowledge of IT security theory, technologies, policies, and practices
- Demonstrated ability to effectively negotiate or mediate issues
- Strong written communication and documentation, and analytical reporting skills
- Working knowledge of GRC platforms
- Experience with information protection, security, risk, and compliance-related matters
- IT audit experience in gathering artifacts
- Persuasive communication skills necessary to collect essential information & answer questions
- Planning and organizational skills necessary to coordinate workload around complex, multiple assignments
- Proven ability in information security principles, latest industry awareness, and current knowledge
- Knowledge of NIST (800-53, CSF) and other information security frameworks
- Knowledge of information security processes and tools
- Able to manage multiple priorities and work well under pressure
- Knowledge of data privacy regulations is a plus
Minimum Qualifications:
- 3+ years of experience in IT audit, information security, or information risk management with customer-facing responsibilities
- General knowledge of IT audit and assessment concepts and practices
- Proven ability in information security principles, latest industry awareness, and current knowledge.
Benefits
- Strong company culture.
- Competitive compensation
- Benefits package that includes 100% paid medical, dental and vision for the employee
- 401(k) with employer match.
- Flexible PTO policy.
- Flexible working arrangements.
- Annual company overnight retreat (employee + significant other).
Equal Opportunity Employer
EVOTEK believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Cloud Compliance Incident response KPIs Monitoring NIST Privacy Risk assessment Risk management
Perks/benefits: 401(k) matching Career development Competitive pay Flex hours Flex vacation Health care Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Cyber Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open IT Security Engineer jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs