Information Security Analyst - Remote
Los Angeles, California, United States - Remote
Applications have closed
EVOTEK is North America's premier enabler of secure digital business focused on innovation. With an integrated set of technical domains, including data center, network, security, cloud, and communications, EVOTEK provides a cohesive approach to digital initiatives while driving business impact. In addition to technical solutions, EVOTEK offers advisory services and strategic sourcing to help bridge the gap between IT and business, reducing functional silos and facilitating alignment. EVOTEK was named Inc. Magazine's "Best Places to Work" in 2018, 2020, and 2022. In addition, for seven consecutive years, EVOTEK was listed in The San Diego Business Journal's "Best Places to Work" and recognized in CRN's "Solution Provider 500" list, CRN's "Next-Generation 250" list, CRN's "Triple Crown" and highlighted as CRN's "Top 150 Growth Companies".
Role Summary
The Security Analyst is responsible for specific aspects of the security program including regulatory reporting, metrics/KPIs, training and awareness, security process integration and risk management for our clients . Protects computer assets by establishing and enforcing system access controls; maintaining disaster preparedness.
- Document, maintain and analyze compliance with IT controls, standard procedures, and policies.
- Demonstrate excellent customer service skills, build credibility and rapport with client technical teams.
- Assist in periodic information risk assessments and audits to ensure that information systems are adequately protected to meet security objectives.
- Assist in collecting security-related evidence for external audits.
- Provide technical expertise during IT security incident response.
- Support IT security inquiries from customers.
- Assist in the review of vendor IT security programs and controls.
- Assist in tracking and maintenance of action plans for the resolution of issues identified during assessments and audits. Provide needed assistance with the execution of those remediation plans.
- Ensure authorized access by investigating improper access; revoking access; reporting violations; monitoring information requests by new programming; recommending improvements.
- Establish physical security by developing standards, policies and procedures.
- Advise on risk levels and security posture through a risk management framework.
- Identify business processes requiring information security Integration.
- Support the design and execution of security exercises.
Requirements
- Analytical mindset to be able to make sound recommendations on Operational Risk issues.
- Technical knowledge of IT security theory, technologies, policies, and practices.
- Demonstrated ability to effectively negotiate or mediate issues.
- Strong written communication and documentation, and analytical reporting skills.
- Working knowledge of GRC platforms.
- Experience with information protection, security, risk, and compliance-related matters.
- IT audit experience in gathering artifacts.
- Persuasive communication skills necessary to collect essential information & answer questions.
- Planning and organizational skills necessary to coordinate workload around complex, multiple assignments.
- Proven ability in information security principles, latest industry awareness, and current knowledge.
- Knowledge of NIST (800-53, CSF) and other information security frameworks.
- Knowledge of information security processes and tools.
- Able to manage multiple priorities and work well under pressure.
- Knowledge of data privacy regulations is a plus.
Minimum Qualifications:
- 3+ years of experience in IT audit, information security, or information risk management with customer-facing responsibilities.
- Policy, risk and framework experience.
- General knowledge of IT audit and assessment concepts and practices.
- Proven ability in information security principles, latest industry awareness, and current knowledge.
Benefits
- Salary commensurate with years’ of experience, technical expertise and geographic location.
- Salary range: $95,000 to $130,000.
- Performance bonuses.
- Benefits package that includes 100% paid medical, dental and vision for the employee
- 401(k) with employer match.
- Strong company culture.
- Flexible PTO policy.
- Flexible working arrangements.
- Annual company overnight retreat (employee + significant other).
Equal Opportunity Employer
EVOTEK believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.
Tags: Audits Cloud Compliance Incident response KPIs Monitoring NIST NIST 800-53 Privacy Risk assessment Risk management RMF
Perks/benefits: 401(k) matching Career development Flex hours Flex vacation Health care Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Product Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open IT Security Engineer jobs
- Open Sr. Security Engineer jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Security Clearance-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Forensics-related jobs
- Open Kubernetes-related jobs