Principal Security Analyst
New Jersey , Howell, NJ, US | Remote, Howell Township, NJ, US
Cardknox is looking for a Principal Security Analyst to join our development team and spearhead our cloud and application cybersecurity strategy. As a Principal Security Analyst, you will play a critical role in ensuring the security and integrity of our software, systems, and data, as well as maintaining compliance with relevant regulations. The ideal candidate is a strategic thinker with a deep understanding of cybersecurity best practices, risk management, and the ability to lead a team in a fast-paced, growth-focused environment.
We believe in empowering our employees to think outside the box and meet challenges head-on because, at Cardknox, everyone is a leader. Our employees take personal responsibility for ensuring our merchants and vendor partners have the tools and guidance they need to be successful. If you are driven to help us create next-generation payment solutions, eager to effect change, and passionate about providing excellent customer support, we want to talk to you!
Key Responsibilities:
- Cybersecurity Strategy: Improve and implement a comprehensive cybersecurity strategy that aligns with the company's business goals and objectives.
- Security Architecture Design: Design secure cloud architecture and application frameworks, considering factors like scalability and data protection. Implement security controls such as encryption, access controls and network segmentation.
- Risk Management: Identify, assess, and prioritize cybersecurity risks and vulnerabilities associated with cloud infrastructure and applications, and develop strategies to mitigate these risks effectively.
- Compliance: Ensure compliance with industry regulations, standards, and legal requirements related to cybersecurity, including PCI and GDPR.
- Security Policies and Procedures: Develop and maintain security policies, standards, and procedures to protect company assets and data.
- Incident Response: Develop and oversee the incident response plan for cloud and application security incidents, ensuring that the company is well-prepared to respond to and recover from cybersecurity incidents.
- Security Awareness: Promote a culture of cybersecurity awareness throughout the organization by providing training and educational programs.
- Vendor Security: Evaluate and manage third-party vendor security risks and relationships.
- Security Technology: Oversee the selection, implementation, and management of security technologies and tools, including firewalls, intrusion detection systems, and encryption.
- Security Metrics and Reporting: Establish key performance indicators (KPIs) and metrics to measure the effectiveness of cybersecurity efforts and report to executive management and the board.
- Budget Management: Develop and manage the cybersecurity budget, ensuring efficient allocation of resources.
Qualifications:
- A bachelor’s degree preferred
- At least seven (7) years of proven experience as a Security Analyst or in a senior leadership role within the cybersecurity field in the regulated payments industry.
- Must have experience working with AWS.
- In-depth knowledge of cybersecurity principles, best practices, and industry standards.
- Strong understanding of relevant regulations and compliance requirements.
- Excellent communication and interpersonal skills, with the ability to influence and collaborate at all levels of the organization.
- Experience in managing and leading cybersecurity teams.
- Relevant certifications (e.g., CISSP, CISM, CISA) preferred.
- Exceptional problem-solving and decision-making abilities.
- Proven track record of developing and implementing successful cybersecurity strategies.
What We Offer:
- Full benefits: medical, dental, vision, 401K plan.
- PTO, floating holidays, sick leave
- Opportunity to work with a dynamic and innovative team.
- Career advancement opportunities
- A supportive and inclusive workplace culture
- Exciting, fast-paced environment
- Work with cutting-edge technology.
- Employee referral rewards
- Remote workdays
If you are a strategic cybersecurity leader with a passion for protecting data and driving organizational growth, we encourage you to apply for this exciting opportunity. Join Cardknox and help us shape the future of secure software solutions.
About Cardknox:
Cardknox, based in Howell, NJ, is a premier payments gateway solution and subsidiary company of Fidelity Payment Services. Cardknox is a developer-friendly payment gateway, that has created a marketplace revolution with flexible EMV solutions that can be integrated with POS systems using only a few lines of code. Cardknox serves thousands of customers across every major industry throughout the United States, UK and Canada.
Equal Employment Opportunity Policy
Cardknox provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Tags: Application security AWS CISA CISM CISSP Cloud Compliance Encryption Firewalls GDPR Incident response Intrusion detection KPIs Risk management Strategy Vulnerabilities
Perks/benefits: 401(k) matching Career development Flex hours Flex vacation Health care Medical leave
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Network security-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Application security-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs