Information Security Governance Analyst
About the Role
We are seeking an Information Security Governance Analyst to be responsible for implementing and monitoring targeted security policies, practices, and tools and will support the implementation of an Information Security program throughout Packsize.
This individual will act as a representative to Packsize partners and customers, offering direction and assisting in the communication and implementation of security controls within Packsize solutions across the entire enterprise.
What you will do
Lead the development of the Information Security compliance program, utilizing GRC tools to establish, uphold, and communicate information security policies and standards which align with industry regulations and compliance mandates.
Establish and maintain processes for managing security-related audits, compliance checks, control assessments, and external assessments across Packsize, IT and Information Security.
Ensure timely and complete responses to evidence requests and compile management responses and remediation plans as needed.
Partner with customers and Packsize project teams to answer customer security related questions.
Escalate security risks to both the security management and business unit leads and work together to define remediation plans for the identified security issues.
Articulate security risk through the development of executive level control effectiveness reports and dashboards.
Act as a key stakeholder in IT forums and committees by being an active voice for cybersecurity best practices and policies.
Lead implementation of a comprehensive third party risk management program. Facilitate risk assessments and reviews of third parties, vendors, and business partners to safeguard against undue risk presented by external entities.
Support the Packsize cyber training and awareness program, Cyber Tabletop exercises, Red Team Exercises, ensure all findings are addressed timely via the risk issue management process
Participate and support incident response efforts. Facilitate post-incident debrief. Capture and assign ownership of any risk mitigation activities that were identified during root cause analysis.
What you will Bring
The ideal candidate will possess a strong background in various security domains, extensive experience with security standards, and a track record of implementing robust security measures.
This position offers the opportunity to work with cutting-edge technologies and collaborate with cross-functional teams to fortify our cybersecurity posture.
Demonstrated experience and thorough understanding of various regulatory requirements and laws such as GDPR, SOX as well as risk, control, and assurance frameworks, such as SOC2, ISO, NIST, etc.
Exceptional written and verbal communication skills, and proven ability to translate security risks to all levels of the business.
Working knowledge of common technical controls across security domains (e.g., logical access, configuration management, security operations, etc.
and technologies (e.g., applications, on prem and cloud infrastructure, networks, endpoints).
Experience conducting security risk assessments and audits and identifying the risk to the business and defining treatment strategies.
The ability to interact with Packsize personnel, customers and partners and be able to build strong relationships at all levels and across all business units and organizations, and understand business imperatives.
Organized, responsive and highly thorough problem solver and able to work with minimal supervision.
Relevant certifications such as CISSP, CRISC, CISA, or CTPRA are highly desirable.
Working Environment and Physical Demands
Able to commute to Packsize Headquarters and may work remotely in a hybrid setting
Ability to work in an office environment; sitting for extended periods and move about an office
Ability to travel up to 15%. Able to travel internationally
What We Offer
Packsize considers several factors when determining compensation when extending a job offer, including but not limited to, the role being offered, the associated responsibilities, the candidate's prior work experience, education / training, and any special skills.
If this role excites you but you don’t meet each requirement listed, we encourage you to apply anyway. At Packsize, we welcome applicants of all backgrounds and experiences and understand that the best candidates may come from the most unlikely of places.
Information Security Governance Analyst
We are seeking an Information Security Governance Analyst to be responsible for implementing and monitoring targeted security policies, practices, and tools and will support the implementation of an Information Security program throughout Packsize. Lead the development of the Information Security co...
Sr. Information Security Analyst-Cyber Incident Response (CIRT)
Through a strong understanding of attacker behavior, participates in and manages security events and incidents, and helps train and mentor other analysts. Information Technology/Security. Develop and follow detailed operational processes and procedures to appropriately analyze, escalate and assist i...
Information Security Governance Analyst
We are seeking an Information Security Governance Analyst to be responsible for implementing and monitoring targeted security policies, practices, and tools and will support the implementation of an Information Security program throughout Packsize. Lead the development of the Information Security co...
Information Security Analyst
Our Information Security Analysts are equipped to prepare, prevent, detect, respond and recover cyber security events. Utilizes tools and documented processes to ensure consistency and optimization of information security processes; work in support of efforts to measure and improve information secur...
Principal Nuclear Surety Engineer – ICBM Reentry Vehicle Lead - Security Clearance Required
The company has more than 60 years of proven experience providing advanced engineering and analysis, IT and C5ISR capabilities to support our nation’s most critical national security missions. We are seeking a Principal Nuclear Surety Engineer to serve as the ICBM Reentry Vehicle Lead to support nuc...
SOC Analyst II - Remote EST - $45-55/hr - W2 Only
Trains all new SOC Tier I Analysts in the usage or all security tools and the execution of all SOC procedures. SOC Analyst II - Remote EST - $45-55/hr - W2 Only. The SOC Tier II Analyst is responsible for monitoring, analysis, response, and escalation of security incidents and events. Creation of Re...
Hybrid Remote Business Data Analyst [24-00167]
Summit Human Capital is seeking a highly motivated Hybrid Remote Business Data Analyst to support one of our largest clients in Richmond, VA. ...
EHR Business Analyst - Remote (Must be a state of WI resident)
Prior experience as a Business Analyst/Consultant with 5 or more years of experience in the field or related area. As an Electronic Health Records Analyst IV, you will be responsible for implementing, maintaining, and configuring projects related to the support of the client's Health and Behavior So...
Project Manager Support - Tanis Americas
As a Project Manager at T-Support, you'll be leading the Tanis support projects. From our hub in Salt Lake City, Utah, you'll be the point of contact with the client from the request stage to define the needs, and together with a multidisciplinary team, you'll ensure successful realization of T-Supp...
Intern- Data Analyst, Compliance Risk Management
Intern - Data Analyst, Compliance Risk Management. Assist to maintain data quality controls and ensure that appropriate data structures are in place. Candidate must be currently enrolled and pursuing a degree in Statistics, Computer Science, Data Science, Data Analytics, Business Analytics, Informat...