Job Description :
Title: Information Security Analyst
Duration: 6 Months contract
Location: Chicago, IL 60606

Job Requirements
Support the integration of information security in the Project Management Life Cycle (PMLC) by working closely with project managers and business stakeholders to assess the information security impacts and requirements for IT projects of varying complexities.
Evaluates risk level of projects.
Will report to the Sr. Manager – Security Advisory within IT Security, Risk and Compliance department.
Educate and communicate security standards/ requirements to Project Managers (PMs) and Solution Engineers.
Recommend and implement changes to tools to enhance integration and process effectiveness.
Requires some experience in discipline.
Conducts routine tasks as directed and coordinates daily project review meetings.
Works independently with limited supervision and some latitude for independent judgment around processes.
Will give someone well rounded knowledge in all 8 security domains.

Minimum of 3 years of relevant technical or information security; experience in working as an application developer or QA analyst is a plus.
Bachelor’s degree in Computer Science, Engineering, Business Administration, or another related field.
Skilled at communicating (oral/written) effectively with peer group, middle and senior management in IT, and all areas of the enterprise.
Skilled at working successfully with people, leading teams, and coordinating project activities.
Experience working through the complete IT Security life-cycle.
Ability to analyze systems and networks for a clear written determination of compliance, residual risk, and potential vulnerability mitigation strategies.
Working knowledge of risk management frameworks such as OWASP controls and NIST CSF.
Some technical experience and security exposure with core technologies, including Cloud, Digital, Data Protection, User Management, Digital Mobility, Compliance, Application Security, Event Management, CDM.
Working knowledge of ITIL Change Management Process.
Be able to translate IT Jargons and business requirements into plain simple language.
Understanding of security best practices related to the storage, processing, and transmission of data.
Understanding of tactics and approaches commonly employed to compromise information systems.
Ability to think critically and analytically.
Ability to conduct meetings and give presentations.
Ability to multi-task and manage multiple priorities.
Strong interpersonal, analytical, and customer service skills.
Flexibility to quickly adapt to changing business needs and processes.
Familiarity with information security frameworks such NIST/ISACA/ISO.
Basic understanding of regulatory requirements (PCI, HIPAA, SOX, SOC, etc
Basic working knowledge of security solutions and controls.
Network background and an understanding of what it takes to make network design secure.

If supporting SAT process is the main task, PMP preferred and skill in SharePoint, InfoPath, etc. will be very helpful.
Familiarity with Information Security tools such as vulnerability scanning tools, access monitoring tools, etc.
Experience in airline industry with business systems.
IAM, IAT II, SANS, CISSP, or other information security certifications.