OverviewPosition OverviewThe IT Compliance and Sec Analyst is responsible for supporting the day-to-day operational aspects of IT system security designs, policies, and solutions in partnership with Security Architects, Technical Operations, and Information Security leadership. This role participates in projects across business and IT teams and supports enterprise information security initiatives that protect company systems, networks, applications, and information assets while reducing organizational risk and maintaining compliance requirements.
Responsibilities and QualificationsKey ResponsibilitiesInformation Security Operations & Risk Management- Assess information security risks and facilitate remediation of identified vulnerabilities across the enterprise.
- Assess information risks and facilitate remediation of identified vulnerabilities affecting networks, systems, and applications.
- Monitor computer networks, systems, and cloud environments for security-related events and concerns.
- Prepare findings and recommendations for corrective actions related to identified security risks and vulnerabilities.
- Investigate and document security breaches and cybersecurity incidents.
- Facilitate and monitor risk remediation activities and report findings related to risk mitigation efforts.
- Perform vulnerability scans in partnership with Technical Operations teams and support remediation efforts.
Security Compliance, Audits & Governance- Support IT audits, IT risk assessments, and regulatory compliance activities.
- Perform assessments of the IT security and risk posture across networks, systems, software applications, and third-party vendors as part of the Vendor Management Program.
- Support compliance initiatives related to PCI, SOC, and other applicable security requirements. Infrastructure Security & Technical Collaboration.
- Collaborate with Technical Operations teams to implement and maintain security measures designed to protect systems and information infrastructure.
- Support the implementation and operation of security technologies including firewalls and data encryption solutions.
- Participate in cross-functional initiatives involving business and IT stakeholders to support enterprise information security objectives. Security Awareness & Continuous Improvement.
- Stay current on information security trends, standards, emerging threats, and industry developments.
- Develop company-wide information security best practices and recommendations.
- Research security enhancements and provide recommendations to management.
- Support and administer the organization's Security Awareness Program.
Additional Responsibilities & Miscellaneous- Perform other duties as assigned to support IT and corporate objectives.
Qualifications- Experience in an information security related role with exposure to PCI, SOC compliance, risk assessments, and related security initiatives.
- Experience with networking security technologies and integrating security technologies into enterprise environments.
- Experience with computer network penetration testing, vulnerability testing, and related techniques.
- Experience identifying, mitigating, and communicating cloud, network, and system vulnerabilities and misconfigurations across Azure, AWS, and GCP environments.
- Experience interpreting and communicating security-related information to employees and business stakeholders.
- Prior experience performing security reviews and risk assessments preferred.
- Experience evaluating security products and managing vendor relationships preferred.
- Strong communication and time management skills
Compensation and BenefitsReports ToVP Compliance, Security & Adv Tec
CompensationThe listed pay range reflects the expected base rate for this position. Within the range, individual pay may vary based on experience, qualifications, and work location within state. This is a full-time position with competitive pay and benefits.
- Base: $73,000 - $94,000 per year
- Bonus: 10% Target Bonus
- Total Compensation (Base + Bonus): The successful candidate could reasonably expect a Total Compensation Package in the range of $77,000 - $108,000
- Equity: This role is not eligible for equity opportunities, awards or grants.
BenefitsAt FBM, we're committed to supporting our employees both personally and professionally. We offer a comprehensive and competitive benefits package designed to help you thrive inside and outside of work. Our excellent package includes:
- Medical, Dental and Vision plans with leading national providers
- Health Savings Account (HSA) / Flexible Spending Account (FSA)
- Company Provided Basic Life and Accident Death & Dismemberment (AD&D)
- Voluntary Life and Accidental Death & Dismemberment (AD&D)
- Critical illness, Hospital Indemnity, Accident Coverage
- Legal Insurance Plan
- Paid Time Off (PTO) & Paid Company Holidays
- 401(k) plan with generous company match
Posting PeriodThis job will be posted for at least 5 days, starting on the initial post date reflected above.
Salary RangeMin: USD $73,000.00/Yr., Max: USD $94,000.00/Yr.