Job Description :
Information Security Operations Analyst
Location: O’Fallon, MO
Duration: 12 months
Description:
- The Security Operations Services team within Corporate Security Operations is focused on relationship with customers as they are seeking resolution or assistance with issues regarding access and identity management, role management, as well as creating and fostering a robust control environment.
- The Security Operations Services team manages all business processes around access management for all internal users at Client (18,000 We employ role based access control.
- The purpose of this job is to support the access requirements of new projects along with mergers and acquisitions. This will involve obtaining requirements, serving as point of contact for the project team and the department, communicating processes, procedures, standards, and policies, as well as managing implementation timelines.
- The Security Operations Services team supports all external, internal, regulatory, etc. audit requests for information and manages access related compliance efforts for Client.
Role:
- Responsible for being the primary point of contact for day to day access requirements related to projects and acquisitions.
- Meeting with project/acquisition teams and understanding their access requirements to communicate back to the Security Operations team. Additionally responsible for understanding, and communicating Security Operations processes, procedures, requirements, standards, and restrictions back to the project/acquisition teams.
- Develop and present timelines related to project/acquisition initiatives, manage and monitor approved timelines to ensure timely completion of tasks. Provide reporting and status updates related to approved timelines.
- Ensure compliance with documented processes and evaluate if access is designed appropriately.
Additional non-project related activities can also include the following:
- Manage & support various access related reviews, include annual certifications/reviews, transfer reviews, privileged access reviews.
-Evaluate the integrity of access management data, including role descriptions, and ownership of information security resources. Work with internal users to update the data and provide feedback.
- Communicate with a large population of users, track correspondence and associated deadlines to ensure timely responses and complete requests from external departments.
- Perform analysis, design, implementation, documentation and maintenance of systems that protect and ensure the safety of enterprise information assets.
- Provide oversight, advisory and consultative services to users, application teams and departments around access management.
- Participate on project teams helping new applications design access, explain and provide training/awareness on access management processes and tools, etc.
All About Candidate:
- Information Security background is a must.
- Working knowledge of access and identity management concepts and processes, including the concept of roles and individual access, approvals, access certification reviews, etc is a must.
- A self-starter with good communication skills that can interact with individuals at all levels of the company.
- Works independently with very limited supervision with ability to follow through on project completion, handle multiple priorities, provide accurate and timely status updates, and knowledge of when to escalate appropriately.
- Working knowledge of various platforms and how access/provisioning works on each including but not limited to: UNIX, Oracle database, Postgres, Windows/Active Directory, Tandem, Mainframe, DB2, Hadoop, etc. Knowledge of each platform is not required but a plus.
- Understands the basics of information Security controls, in particular in the context of regulatory compliance requirements (PCI, GLBA, SOX
- Experience with an identity and access management tool is a plus.