Talent.com
Information Security Analyst II
Information Security Analyst IIGlobe Life Inc. • McKinney, Texas, USA
Information Security Analyst II

Information Security Analyst II

Globe Life Inc. • McKinney, Texas, USA
30+ days ago
Job type
  • Full-time
  • Part-time
Job description
Job Description:

Information Security Analyst II

Primary Duties & Responsibilities

JOB SUMMARY

Experience what being part of the Globe Life family feels like. Be inspired by your leaders, encouraged, and cheered on by your teammates to excel and be supported in your career while working with us. We offer a competitive salary with a great benefits package, including 401(K) match, medical, dental, and vision health plans, short - term and long-term disability, paid time off, tuition reimbursement and other career development opportunities.

The Information Security Analyst is responsible for establishing and executing a portion of the Globe Life Information Security Program to provide information security services that support the reduction of business security risk. This position performs attack surface assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known threats. This position will evaluate activities and metrics of security programs and identify areas for improvement in execution, coverage, and reporting. This also supports the creation, review, and support of enterprise security policies, standards, and supporting documentation.

PRIMARY DUTIES & RESPONSIBILITIES
  • Establish, implement, and maintain Information Security programs, requirements, and standards based on the analysis of user, policy, regulatory, and resource demands
  • Analyze organization's cyber defense policies and configurations and evaluate compliance with regulations and organizational directives
  • Oversee and/or support authorized penetration testing on enterprise network assets
  • Assess the network environment against known threats and attack techniques
  • Maintain knowledge of applicable cyber defense policies, regulations, and compliance documents specifically related to cyber defense auditing
  • Prepare vulnerability reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions
  • Perform technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications)
  • Participate in the analysis of business workflows to identify vulnerabilities and areas of non-compliance with company and regulatory standards
  • Assist in the creation and reporting of Information Security program metrics that effectively measures program maturity
  • Gather metrics and identify trends in security practices that could increase risk to the company's information assets
  • Explain security principles and strategic objectives to peers within other departments
  • Assist in managing incident response procedures as needed
  • Serve as an escalation point for responding to questions sent to the Information Security team regarding policy, regulations, data classification, security recommendations, education, etc.
  • Routinely review documentation related to regulations, standards, and trends in industry or information security for changes impacting the overall Information Security Management System or Information Security programs
  • Other duties and responsibilities, as assigned

Required Skills
KNOWLEDGE, SKILLS, & ABILITIES
  • Possess knowledge of the following program areas: Identity and Access Management, Physical Security, Third Party Risk Management, Enterprise Risk Management, Security Awareness Training, Cryptography, Threat and Vulnerability Management, Incident Response, Business Continuity Planning / Disaster Recovery, Data Classification, Insider Threat, Data Loss Prevention, and Data Protection
  • Familiarity with GLBA, HIPAA and PCI
  • Understanding of the purpose and applicability of ISO, NIST, FIPS, COBIT, and COSO
  • Able to approach security in an objective fashion
  • Able to facilitate and keep meetings objective and on point, utilizing conflict resolution skills when necessary
  • Able to discuss information security in terms of business support when speaking with peers and executives
  • Delivers well-organized, impactful presentations
  • Knowledge in the following areas enterprise security:
    • Different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks)
    • Cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored)
    • System administration, network, and operating system hardening techniques
    • Cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks)
    • Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
    • Ethical hacking principles and techniques
    • Data backup and restoration concepts
    • System administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems
    • Infrastructure supporting information technology (IT) for safety, performance, and reliability
    • An organization's information classification program and procedures for information compromise
    • Packet-level analysis using appropriate tools (e.g., Wireshark, tcpdump)
    • Cryptology
    • Network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
    • Penetration testing principles, tools, and techniques.
    • An organization's threat environment.
    • Application Security Risks (e.g. Open Web Application Security Project Top 10 list)
  • Able to analyze data and identify the root cause of an issue as well as providing recommendations for improvements in administrative and technical controls to address the issues identified in the root cause analysts
  • Good interpersonal skills that include the ability to effectively communicate both in written and verbal forms
  • Must stay up to date on the latest security trends, vulnerabilities, privacy legislation, and news items and communicate new finding with other team members

Applicable to all employees of Globe Life & Accident and its subsidiaries:
  • Reliable and predictable attendance of your assigned shift
  • Ability to work full time and/or part time based on the position specifications.

Required Knowledge & Experience
EDUCATION & WORK EXPERIENCE REQUIRED
  • At least 5-7 years of experience in information security, IT security, intelligence or a related field is preferred.
  • Bachelor's or Master's degree in Information Technology, Information Systems, Information Assurance or equivalent experience is preferred
  • CISSP, SSCP from (ISC)2 or GIAC Enterprise Vulnerability Assessor is preferred
  • Experience in, or functional knowledge of, multiple Information Security disciplines in support of the insurance, healthcare or finance industries. Information Security disciplines are programs or controls that support the protection of the confidentiality, integrity, and availability of information
  • Experience in Information Security risk management and mitigation is preferred
  • Experience in implementing the NIST Risk Management Framework is desired

Location: 3700 S. Stonebridge Dr., McKinney, Texas
Create a job alert for this search

Information Security Analyst II • McKinney, Texas, USA

Similar jobs

Information Security Engineer Job

Atlantic Aviation FBO Services, Inc.Plano, TX, United States
Full-time

Information Security Engineer JobPlano, TX.The Information Security Engineer is responsible for designing, building, testing, and implementing security systems within the organization's IT network....Show more

 • Promoted

Information System Security Engineer/ Site Lead

Cyber Defense TechnologiesRichardson, TX, United States
Full-time

CDT is seeking an experienced and skilled Site Lead and ISSE (Information Systems Security Engineer) for a DoD program in Richardson, TX.This position is hands-on technical and will provide on-site...Show more

 • Promoted

Lead Information Security Consultant (Global Payment Network)

Capital OnePlano, TX, United States
Full-time +1

Lead Information Security Consultant (Global Payment Network).As a Lead Consultant in Capital One's Cyber Information Security Office (ISO), you will work closely with our cybersecurity team and wi...Show more

 • Promoted

Application Security Analyst

IVID TEK INCPlano, Texas, United States
Full-time
Quick Apply

We are seeking a skilled and proactive Application Security Analyst to integrate security practices into our DevOps processes.The ideal candidate will work closely with development and operations t...Show more

Information Security Project / Program Manager - Remote

Irvine Technology CorporationAddison, TX, United States
Remote
Permanent

Job DescriptionJob DescriptionLocation :Remote (client in Dallas)Term :Direct Hire or contract to hireSalary :to $145k with excellent bonus and benefitsSorry no 3rd Parties or CTCOur client is seek...Show more

 • Promoted

Senior Information Security Quality Analyst

HITRUSTFrisco, TX, United States
Full-time

The HITRUST Quality department is looking for a.Senior Information Security Quality Analyst.Be a part of the future of information risk management In a dynamic and agile environment.Are you detail-...Show more

 • Promoted

Application Security Analyst

IVidTek, Inc.Plano, TX, United States
Full-time

We are seeking a skilled and proactive Application Security Analyst to integrate security practices into our DevOps processes.The ideal candidate will work closely with development and operations t...Show more

 • Promoted

Application Security Analyst

Tyler TechnologiesPlano, TX, United States
Full-time

Tyler's applications by being accountable for configuring, conducting, and auditing application security scans and tooling tailored to Tyler's products.This position requires a collaborative approa...Show more

 • Promoted

IT Security Analyst II (Remote)

Globe Life Family of CompaniesMc Kinney, TX, United States
Remote
Full-time

At Globe Life, we are committed to empowering our employees with the support and opportunities they need to succeed at every stage of their career.We take pride in fostering a caring and innovative...Show more

 • Promoted

25B Information Technology Specialist

Army National GuardWylie, TX, USA
Full-time +1

If you’ve ever considered a job in IT, become an Information Technology Specialist in the Army National Guard and expand your skills and experience with complex technologies.In this role, you will ...Show more

 • Promoted

Information Security

Purple DrivePlano, TX, United States
Full-time

Strong understanding of network protocols, operating systems, and security architecture.Experience with SIEM platforms, firewalls, endpoint security, and identity/access management tools.Familiarit...Show more

 • Promoted

Information Technology_USA - USA_Analyst

SysMind TechPlano, TX, United States
Full-time

Please strictly adhere to the following resume naming convention:.ALL CAPS, NO SPACES B/T UNDERSCORES.PTN_US_GBAMSREQID_CandidateBeelineID.PTN_US_9999999_SKIPJOHNSON0413.Location: 6565 Headquarters...Show more

 • Promoted

Business Intelligence Senior Analyst, Information Technology

ServiceLinkPlano, TX, United States
Full-time

Are you motivated to leverage your unique skills and experience to impact the business value of a company trusted by the nation's strongest lending institutions.Take your experience to the next lev...Show more

 • Promoted

Identity and Access Management (IAM) Certification Analyst

HCL Global SystemsRichardson, TX, United States
Full-time

Hitachi - Banking Domain / Keep it confidential.We are seeking a highly analytical and detail-oriented Certification Analyst to join our Cybersecurity team.This role focuses on managing and enhanci...Show more

 • Promoted

Architect, IT Security

Concentra Career ChoiceAddison, TX, United States
Full-time

Concentra is recognized as the nation’s leading occupational health care company.With more than 40 years of experience, Concentra is dedicated to our mission to improve the health of America’s work...Show more

 • Promoted

Information Security Analyst

TradeJobsWorkForce75025 Plano, TX, US
Full-time

Monitor their organization’s networks for security breaches and investigate a violation when one occurs Install and use software, such as firewalls and data encryption programs, to protect sensitiv...Show more

 • Promoted

07 - Security Analyst

CelesticaRichardson, TX, United States
Full-time

Incumbents are fully qualified to execute job/role accountabilities working independently on most aspects of the job.Work is performed within established professional standards and practices.Tasks ...Show more

 • Promoted

Virtual Information Security Officer

Toyota Motor SalesMurphy, TX, United States
Full-time

Overview Who we are Collaborative.These are just a few words that describe what life is like at Toyota.As one of the world's most admired brands, Toyota is growing and leading the future of mobilit...Show more