Belcan
This range is provided by Belcan. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more.
Base pay range $30.00/hr - $33.33/hr
Direct message the job poster from Belcan
Senior Technical Recruiter @ Belcan (A Cognizant Company) | US Staffing | Certified Recruiter Job Title: Information Security Analyst
Location: Mason, OH
Duration: 6 months
Pay Rate: $33.33/hr.
Start Date: Immediate
GENERAL FUNCTION The IS Application Security Analyst will support the execution, planning, and administration of the Vulnerability Management function within Information Security (IS). The Vulnerability Management Analyst executes core processes in the vulnerability management program focused on vulnerability assessments, penetration testing and social engineering. Additionally, they will support the remediation of vulnerabilities resident within systems to minimize the organization’s potential attack surface for exploitation.
The Analyst will provide oversight, drive, facilitate and coordinate the management of vulnerabilities across the enterprise. The Analyst must understand underlying application code approaches in order to effectively review and respond to application security scans. While technical involvement is required, this role is not intended to perform direct remediation. The Analyst will support automated scans and may provide post‑development testing assistance to validate that vulnerability remediation efforts are appropriately tested.
MAJOR DUTIES AND RESPONSIBILITIES
Monitor and analyze vulnerability assessment data to identify and communicate technical risks to the organization
Support the identification and impact classification for new vulnerabilities identified in the environment
Execute and support vulnerability assessments, penetration testing and social engineering activities
Provide the Information Security and IT Security team information on the emerging cyber threat landscape, including threat actor tactics, techniques, and procedures
Review and interpret application security scan results with an understanding of underlying code structures to provide effective feedback
Provide post‑development testing support to ensure vulnerability remediation items are validated and tested appropriately
Facilitate vulnerability management processes by tracking and coordinating remediation efforts across multiple teams
Ensure timely closure of security gaps by working with application, infrastructure, and operations teams
Support IS in achieving the vision and strategic objectives of the vulnerability program
Conduct analysis, aggregate and report on vulnerability data from various scanning tools and platforms
Manage and utilize IS tools such as DLP, Code scanner, external security profile, etc. to analyze gaps in security controls
Participate in the IT SDLC program to ensure that security is included in project by default and by design
Develop strong working relationships with other departments and potentially clients across the organization to ensure a high degree of security compliance client satisfaction
Assist with regulatory and compliance requirements, contributing to security audits, assessments, attestations, certifications and client vulnerability inquiries
Brief IS leadership on vulnerability assessment results and potential risks
Support leadership to identify capability gaps in vulnerability management services
Collaborate with cross‑functional teams to improve security posture and embed security into existing IT and operational workflows
Continue self‑development of knowledge, skills and abilities to better support execution of the Information Security (IS) function
BASIC QUALIFICATIONS
Bachelor’s degree in computer science, IT or equivalent
3+ years of experience in IT or IS or Compliance
Experience with major standards such as: SOC 1‑2, ISO 27001/2, PCI DSS, HITRUST, SANS, NIST
Demonstrated experience in implementing compliance frameworks for financial services organization or organizations with similar information security needs and requirements
Familiarity and understanding of broad range of IT hardware and software products
Excellent presentation, verbal communication, and written skills
Excellent analytical and problem‑solving skills
Experience managing typical enterprise security and intrusion detection systems
Ability to work in a collaborative environment across business and technology teams
Ability to interpret application structures and code approaches at a high level in order to review and respond to scan results
PREFERRED QUALIFICATIONS
Certified Information Systems Security Professional (CISSP), PCI DSS, Certified HIPAA Privacy Security Expert (CHPSE), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC), or related.
Experience or knowledge with healthcare or health insurance
Knowledge of CMS and HIPAA related vendor requirements
Working knowledge of Security SDLC tools
Belcan is an equal opportunity employer. Your application and candidacy will not be considered based on race, colour, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws.
Seniority level Associate
Employment type Contract
Job function Analyst
Industries IT Services and IT Consulting
Referrals increase your chances of interviewing at Belcan by 2x
Get notified about new Information Security Analyst jobs in
Mason, OH .
#J-18808-Ljbffr
Base pay range $30.00/hr - $33.33/hr
Direct message the job poster from Belcan
Senior Technical Recruiter @ Belcan (A Cognizant Company) | US Staffing | Certified Recruiter Job Title: Information Security Analyst
Location: Mason, OH
Duration: 6 months
Pay Rate: $33.33/hr.
Start Date: Immediate
GENERAL FUNCTION The IS Application Security Analyst will support the execution, planning, and administration of the Vulnerability Management function within Information Security (IS). The Vulnerability Management Analyst executes core processes in the vulnerability management program focused on vulnerability assessments, penetration testing and social engineering. Additionally, they will support the remediation of vulnerabilities resident within systems to minimize the organization’s potential attack surface for exploitation.
The Analyst will provide oversight, drive, facilitate and coordinate the management of vulnerabilities across the enterprise. The Analyst must understand underlying application code approaches in order to effectively review and respond to application security scans. While technical involvement is required, this role is not intended to perform direct remediation. The Analyst will support automated scans and may provide post‑development testing assistance to validate that vulnerability remediation efforts are appropriately tested.
MAJOR DUTIES AND RESPONSIBILITIES
Monitor and analyze vulnerability assessment data to identify and communicate technical risks to the organization
Support the identification and impact classification for new vulnerabilities identified in the environment
Execute and support vulnerability assessments, penetration testing and social engineering activities
Provide the Information Security and IT Security team information on the emerging cyber threat landscape, including threat actor tactics, techniques, and procedures
Review and interpret application security scan results with an understanding of underlying code structures to provide effective feedback
Provide post‑development testing support to ensure vulnerability remediation items are validated and tested appropriately
Facilitate vulnerability management processes by tracking and coordinating remediation efforts across multiple teams
Ensure timely closure of security gaps by working with application, infrastructure, and operations teams
Support IS in achieving the vision and strategic objectives of the vulnerability program
Conduct analysis, aggregate and report on vulnerability data from various scanning tools and platforms
Manage and utilize IS tools such as DLP, Code scanner, external security profile, etc. to analyze gaps in security controls
Participate in the IT SDLC program to ensure that security is included in project by default and by design
Develop strong working relationships with other departments and potentially clients across the organization to ensure a high degree of security compliance client satisfaction
Assist with regulatory and compliance requirements, contributing to security audits, assessments, attestations, certifications and client vulnerability inquiries
Brief IS leadership on vulnerability assessment results and potential risks
Support leadership to identify capability gaps in vulnerability management services
Collaborate with cross‑functional teams to improve security posture and embed security into existing IT and operational workflows
Continue self‑development of knowledge, skills and abilities to better support execution of the Information Security (IS) function
BASIC QUALIFICATIONS
Bachelor’s degree in computer science, IT or equivalent
3+ years of experience in IT or IS or Compliance
Experience with major standards such as: SOC 1‑2, ISO 27001/2, PCI DSS, HITRUST, SANS, NIST
Demonstrated experience in implementing compliance frameworks for financial services organization or organizations with similar information security needs and requirements
Familiarity and understanding of broad range of IT hardware and software products
Excellent presentation, verbal communication, and written skills
Excellent analytical and problem‑solving skills
Experience managing typical enterprise security and intrusion detection systems
Ability to work in a collaborative environment across business and technology teams
Ability to interpret application structures and code approaches at a high level in order to review and respond to scan results
PREFERRED QUALIFICATIONS
Certified Information Systems Security Professional (CISSP), PCI DSS, Certified HIPAA Privacy Security Expert (CHPSE), Certified Information Security Manager (CISM), Global Information Assurance Certification (GIAC), or related.
Experience or knowledge with healthcare or health insurance
Knowledge of CMS and HIPAA related vendor requirements
Working knowledge of Security SDLC tools
Belcan is an equal opportunity employer. Your application and candidacy will not be considered based on race, colour, sex, religion, creed, sexual orientation, gender identity, national origin, disability, genetic information, pregnancy, veteran status or any other characteristic protected by federal, state or local laws.
Seniority level Associate
Employment type Contract
Job function Analyst
Industries IT Services and IT Consulting
Referrals increase your chances of interviewing at Belcan by 2x
Get notified about new Information Security Analyst jobs in
Mason, OH .
#J-18808-Ljbffr