Job Description :
Role: Information Security Analyst
Location: Pittsburgh, PA
Duration: 12 Month
Description:
Department/Team Description:
Digital Compliance Management (DCM): ensures the digital compliance of systems and infrastructure around data privacy, transfer and storage.
Position Summary:
Plan, implement, upgrade, or monitor security measures for the protection of computer networks and information. Ensure appropriate security controls are in place that will safeguard digital files and vital electronic infrastructure
Mange IT Security risks by performing IT Security Risk Assessments and recommending the appropriate security controls that will safeguard the IT landscape while benefiting the business benefits of IT operating models
Position Duties & Responsibilities:
Conduct in-depth information technology risk assessments including creating detailed process flows, identifying potential gaps and/or inconsistencies and making sound recommendations for improvement and/or mitigation.
Review third party vendors and contracts to ensure appropriate IT controls are in place and functioning effectively
Perform risk assessment of third-party vendors but not limited to cloud computing and identifying gaps in the vendor IT control environment and recommending mitigating controls to address the gaps that are not in line with Bayer IT Security requirements.
Identify and validate IT risk issues and mitigation strategies.
Defining a framework for the risk assessment activity and an agenda for identification.
Incorporation of a risk assessment plan and execution.
An understanding of the IAM or the Active Directory structure.
Education Requirement(s):
BS in IT security and/or equivalent IT industry
Skill & Competency Requirements:
Proficient in software vulnerability assessments
5+ years of Risk Management experience
5+ years of Customer Facing
Good verbal and communication skills
Excellent presentation skills
Preferences:
IT Security Industry certifications e.g. CISSP, CISM, CRISC, etc. preferred
•Travel Requirements: 10%