SoluStaff

Business Solutions Analyst -Information Security

US-PA-Media
5 months ago
ID
2017-1336
# of Openings
1
Category
Information Technology

Overview

SoluStaff is actively searching for a fulltime Business Solutions Analyst – Information Security for our client in the western suburbs of Philadelphia. The Business Solutions Analyst III Information Security will conduct the information security review of all technology related projects to understand the scope of proposed projects and Information Security related impact.  Consult with the Information Security team upon identifying impact and scope of a project to understand security requirements including administrative, technical and physical controls. Ensure that Information Security is aware and engaged during the project lifecycle. Serve as a primary point of contact between the Business Solutions and Information Security teams.

Responsibilities

 

  • Work collaboratively with IT, Information Security and business units to understand the scope of proposed projects, the impact of proposed projects to client’s security and to identify initial security requirements. Ensure that Information Security requirements are incorporated into projects up front.
  • Act as an Information Security subject matter expert for the Business Solutions team as it related to general security best practices and client’s policies and standards.
  • Collaborate with the Information Security team to develop Information Security standards for various implementation types.
  • Maintain the proposed project pipeline and meet with the Information Security team regularly to review projects to validate security impact and Information Security requirements.
  • Participate in the Application Health Assessment process with the business.  Incorporate results in the application lifecycle planning process.
  • Assist with managing the demand and request for Information Security related consultations.
  • Research, identify and develop solutions to business challenges and opportunities.  Analyze business and user needs, and document customer specifications.
  • Serve as a liaison between the engagement and Information Security teams.
  • Inventory and maintain a list of third party technology services providers.
  • Contribute to project scope and objectives document, and project working papers. Work with project manager to estimate work effort, duration, and resource requirements. Ensure that requirements are being met. Appropriately report status and ensure IT standards and methodology are met. Contribute to the development of project plans.
  • Understand and where needed document the business processes involved with the Business Area. Work with business partner to document and maintain business process documentation. Work with project manager to implement business process changes.
  • Participate in initial investigation of software evaluation; document system requirements; help evaluate technologies and their capabilities; perform gap analysis between business needs and the technology capabilities; design systems architecture; and develop and execute test scripts.
  • Participate in requirements gathering tasks. Analyze requirements for system enhancements and modifications. Include documentation of requirements, research and analysis of options. Make solution recommendation.
  • Work collaboratively with IT, Information Security and business units to identify, evaluate and make recommendations concerning security architecture requirements and help project teams develop appropriate risk mitigation procedures.
  • Interface with internal business units and external vendors to implement projects and associated security controls in accordance with corporate security policies and standards.
  • Provide coaching to other engagement team members regarding Information Security requirements and concepts; Provide constructive suggestions as to recommended training, work approach, and procedures; Work with project manager building teamwork. Participate and provide input on the hiring and selection process.

 

Essential Functions:

  • Ability to work well individually as well as in a team environment
  • Excellent oral and written communication skills, including documentation skills specifically with the drafting and updating of process and procedures.
  • Excellent customer service and interpersonal skills
  • Ability to work with little or no supervision
  • Detail oriented and strong organizational skills
  • Strong analytical and problem solving skills
  • Ability to handle multiple projects simultaneously and independently
  • Proven self-starter with demonstrated ability to make decisions
  • Solid leadership skills and the ability to lead intra-team projects/initiatives
  • Ability to be on-call 24/7 when required
  • Ability to learn new technologies quickly and independently

Qualifications

  • Bachelor’s degree in Information Technology or a technical discipline (e.g., engineering) preferred, or technical certifications, or related experience
  • Certified in one or more of the following: CISSP, CISA, CISM, CEH, technology specific (proxy, data loss prevention, firewall, etc).
  • Minimum of two years working in Information Security.
  • Minimum of seven years working in Information Technology.
  • Working knowledge of information security concepts and technologies such as: least privilege, networking, network segmentation, firewalls, IPS\IDS, network analyzers, encryption technologies, proxies, etc.
  • Knowledgeable of applications used in supported functional areas is a plus.

Options

Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed