Information Security Analyst - Remote

EVOTEK is North America's premier enabler of secure digital business focused on innovation. With an integrated set of technical domains, including data center, network, security, cloud, and communications, EVOTEK provides a cohesive approach to digital initiatives while driving business impact. In addition to technical solutions, EVOTEK offers advisory services and strategic sourcing to help bridge the gap between IT and business, reducing functional silos and facilitating alignment. EVOTEK was named Inc. Magazine's "Best Places to Work" in 2018, 2020, and 2022. In addition, for seven consecutive years, EVOTEK was listed in The San Diego Business Journal's "Best Places to Work" and recognized in CRN's "Solution Provider 500" list, CRN's "Next-Generation 250" list, CRN's "Triple Crown" and highlighted as CRN's "Top 150 Growth Companies".

Role Summary

The Security Analyst is responsible for specific aspects of the security program including regulatory reporting, metrics/KPIs, training and awareness, security process integration and risk management for our clients . Protects computer assets by establishing and enforcing system access controls; maintaining disaster preparedness.

• Document, maintain and analyze compliance with IT controls, standard procedures, and policies.
• Demonstrate excellent customer service skills, build credibility and rapport with client technical teams.
• Assist in periodic information risk assessments and audits to ensure that information systems are adequately protected to meet security objectives.
• Assist in collecting security-related evidence for external audits.
• Provide technical expertise during IT security incident response.
• Support IT security inquiries from customers.
• Assist in the review of vendor IT security programs and controls.
• Assist in tracking and maintenance of action plans for the resolution of issues identified during assessments and audits. Provide needed assistance with the execution of those remediation plans.
• Ensure authorized access by investigating improper access; revoking access; reporting violations; monitoring information requests by new programming; recommending improvements.
• Establish physical security by developing standards, policies and procedures.
• Advise on risk levels and security posture through a risk management framework.
• Identify business processes requiring information security Integration.
• Support the design and execution of security exercises.

Requirements

• Analytical mindset to be able to make sound recommendations on Operational Risk issues.
• Technical knowledge of IT security theory, technologies, policies, and practices.
• Demonstrated ability to effectively negotiate or mediate issues.
• Strong written communication and documentation, and analytical reporting skills.
• Working knowledge of GRC platforms.
• Experience with information protection, security, risk, and compliance-related matters.
• IT audit experience in gathering artifacts.
• Persuasive communication skills necessary to collect essential information & answer questions.
• Planning and organizational skills necessary to coordinate workload around complex, multiple assignments.
• Proven ability in information security principles, latest industry awareness, and current knowledge.
• Knowledge of NIST (800-53, CSF) and other information security frameworks.
• Knowledge of information security processes and tools.
• Able to manage multiple priorities and work well under pressure.
• Knowledge of data privacy regulations is a plus.

Minimum Qualifications:

• 3+ years of experience in IT audit, information security, or information risk management with customer-facing responsibilities.
• Policy, risk and framework experience.
• General knowledge of IT audit and assessment concepts and practices.
• Proven ability in information security principles, latest industry awareness, and current knowledge.

Benefits

• Salary commensurate with years’ of experience, technical expertise and geographic location.
• Salary range: $95,000 to $130,000.
• Performance bonuses.
• Benefits package that includes 100% paid medical, dental and vision for the employee
• 401(k) with employer match.
• Strong company culture.
• Flexible PTO policy.
• Flexible working arrangements.
• Annual company overnight retreat (employee + significant other).

Equal Opportunity Employer

EVOTEK believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.