- Establish, implement, and maintain Information Security programs, requirements, and standards based on the analysis of user, policy, regulatory, and resource demands
- Analyze organization's cyber defense policies and configurations and evaluate compliance with regulations and organizational directives
- Oversee and/or support authorized penetration testing on enterprise network assets
- Assess the network environment against known threats and attack techniques
- Maintain knowledge of applicable cyber defense policies, regulations, and compliance documents specifically related to cyber defense auditing
- Prepare vulnerability reports that identify technical and procedural findings, and provide recommended remediation strategies/solutions
- Perform technical (evaluation of technology) and nontechnical (evaluation of people and operations) risk and vulnerability assessments of relevant technology focus areas (e.g., local computing environment, network and infrastructure, enclave boundary, supporting infrastructure, and applications)
- Participate in the analysis of business workflows to identify vulnerabilities and areas of non-compliance with company and regulatory standards
- Assist in the creation and reporting of Information Security program metrics that effectively measures program maturity
- Gather metrics and identify trends in security practices that could increase risk to the company's information assets
- Explain security principles and strategic objectives to peers within other departments
- Assist in managing incident response procedures as needed
- Serve as an escalation point for responding to questions sent to the Information Security team regarding policy, regulations, data classification, security recommendations, education, etc.
- Routinely review documentation related to regulations, standards, and trends in industry or information security for changes impacting the overall Information Security Management System or Information Security programs
- Other duties and responsibilities, as assigned
- Possess knowledge of the following program areas: Identity and Access Management, Physical Security, Third Party Risk Management, Enterprise Risk Management, Security Awareness Training, Cryptography, Threat and Vulnerability Management, Incident Response, Business Continuity Planning / Disaster Recovery, Data Classification, Insider Threat, Data Loss Prevention, and Data Protection
- Familiarity with GLBA, HIPAA and PCI
- Understanding of the purpose and applicability of ISO, NIST, FIPS, COBIT, and COSO
- Able to approach security in an objective fashion
- Able to facilitate and keep meetings objective and on point, utilizing conflict resolution skills when necessary
- Able to discuss information security in terms of business support when speaking with peers and executives
- Delivers well-organized, impactful presentations
- Knowledge in the following areas enterprise security:
- Different classes of attacks (e.g., passive, active, insider, close-in, distribution attacks)
- Cyber attackers (e.g., script kiddies, insider threat, non-nation state sponsored, and nation sponsored)
- System administration, network, and operating system hardening techniques
- Cyber-attack stages (e.g., reconnaissance, scanning, enumeration, gaining access, escalation of privileges, maintaining access, network exploitation, covering tracks)
- Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
- Ethical hacking principles and techniques
- Data backup and restoration concepts
- System administration concepts for operating systems such as but not limited to Unix/Linux, IOS, Android, and Windows operating systems
- Infrastructure supporting information technology (IT) for safety, performance, and reliability
- An organization's information classification program and procedures for information compromise
- Packet-level analysis using appropriate tools (e.g., Wireshark, tcpdump)
- Cryptology
- Network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
- Penetration testing principles, tools, and techniques.
- An organization's threat environment.
- Application Security Risks (e.g. Open Web Application Security Project Top 10 list)
- Able to analyze data and identify the root cause of an issue as well as providing recommendations for improvements in administrative and technical controls to address the issues identified in the root cause analysts
- Good interpersonal skills that include the ability to effectively communicate both in written and verbal forms
- Must stay up to date on the latest security trends, vulnerabilities, privacy legislation, and news items and communicate new finding with other team members
- Reliable and predictable attendance of your assigned shift
- Ability to work full time and/or part time based on the position specifications.
- At least 5-7 years of experience in information security, IT security, intelligence or a related field is preferred.
- Bachelor's or Master's degree in Information Technology, Information Systems, Information Assurance or equivalent experience is preferred
- CISSP, SSCP from (ISC)2 or GIAC Enterprise Vulnerability Assessor is preferred
- Experience in, or functional knowledge of, multiple Information Security disciplines in support of the insurance, healthcare or finance industries. Information Security disciplines are programs or controls that support the protection of the confidentiality, integrity, and availability of information
- Experience in Information Security risk management and mitigation is preferred
- Experience in implementing the NIST Risk Management Framework is desired
-
Information Security Analyst II
2 days ago
Globe Life McKinney, United States· Information Security Analyst II · Primary Duties & Responsibilities · JOB SUMMARY · Experience what being part of the Globe Life family feels like. Be inspired by your leaders, encouraged, and cheered on by your teammates to excel and be supported in your career while worki ...
-
Information Security Analyst II
6 hours ago
Globe Life Family of Companies McKinney, United StatesJob Description · JOB SUMMARY · Experience what being part of the Globe Life family feels like. Be inspired by your leaders, encouraged, and cheered on by your teammates to excel and be supported in your career while working with us. We offer a competitive salary with a great be ...
-
Information Security Analyst II
3 weeks ago
Globe Life McKinney, United StatesJob Description: · Information Security Analyst II Primary Duties & Responsibilities JOB SUMMARY Experience what being part of the Globe Life family feels like. Be inspired by your leaders, encouraged, and cheered on by your teammates to excel and be supported in your career whi ...
-
Information Security Analyst II
3 weeks ago
Globe Life McKinney, United StatesInformation Security Analyst II · Primary Duties & Responsibilities · JOB SUMMARY · Experience what being part of the Globe Life family feels like. Be inspired by your leaders, encouraged, and cheered on by your teammates to excel and be supported in your career while working ...
-
Information security analyst architecture
3 weeks ago
Globe Life Inc. Mckinney, TX, United StatesInformation Security Analyst II · Be inspired by your leaders, encouraged, and cheered on by your teammates to excel and be supported in your career while working with us. We offer a competitive salary with a great benefits package, including 401(K) match, medical, dental, and v ...
-
Security Analyst
2 days ago
One Park Financial Plano, United StatesJob Description · Job DescriptionOne Park Financial (OPF) is a fast-growing FinTech (Financial Technology) company headquartered in Coconut Grove, Florida. OPF connects small businesses with a wide variety of flexible financing and funding options to help entrepreneurs acquire th ...
-
Security Analyst
2 weeks ago
Concero Dallas, United StatesJob Description · Description: · As a Security Analyst 1 on the Global Cyber Security team, you will be responsible for analysis, response, and triage of security alerts/events, determining which steps to take to mitigate the threat. You will be working in a fast-paced environmen ...
-
IT Security Analyst
2 weeks ago
GuideIT Dallas, United StatesJob Description · Job DescriptionAbout GuideIT · GuideIT is a US based technology services company Headquartered in Plano, Texas, focused on providing value to its customers by aligning technology with business outcomes, maximizing value through cost management, and allowing rap ...
-
IT Security Analyst
2 weeks ago
Balfour Beatty plc Dallas, United StatesAs an industry leader Balfour Beatty offers employees a comprehensive benefits package with competitive salaries and more including: · Medical, Dental, Vision and Life Insurance · Health Savings Account · 401(k) with company match · Flexible Spending Accounts (Dependent & Medical ...
-
Application Security Analyst
1 week ago
Innova Solutions Frisco, United StatesInnova Solutions is immediately hiring for the Application Security Analyst · Position ype: Fulltime Contract · Duration: 12 Months · Location: Remote · As an Application Security Analyst, you will be responsible for: · Discovering and Researching new vulnerabilities and exploi ...
-
OT Security Analyst
2 weeks ago
Alpha Consulting Corp Dallas, United StatesDESCRIPTION · Artech is currently seeking to add to the below position. · Job Title: OT Security Analyst · Job ID: · Location: Dallas, TX (On-site & Local) · Duration: 6+ Months · Job Description: · OT Security Analyst –This role would be an analyst that is investigating the al ...
-
Cyber Security Analyst
3 weeks ago
Yoh, A Day & Zimmermann Company Dallas, United StatesCybersecurity Analyst · Direct Hire · Dallas, TX (Onsite) · Responsibilities; · Our client is looking for a Cybersecurity Analyst to analyze, assess, plan, and enact security measures to help protect the company from security breaches and attacks on its data, computer networks an ...
-
Cyber Security Analyst
1 hour ago
Wipro Addison, United StatesAbout Wipro: · Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients' most complex digital transformation needs. We leverage our holistic portfolio of capabilities i ...
-
Cyber Security Analyst
1 week ago
Medix Technology Carrollton, United StatesCyber Security Analyst (Crowdstrike Subject Matter Expert) · Full-Time - $120,000/YR · Carrollton, TX · We are seeking a talented and experienced Cyber Security Analyst with specific expertise in utilizing Crowdstrike technologies. The ideal candidate will play a crucial role in ...
-
Information Security Analyst
2 days ago
Collabera Dallas, United StatesHome · Search Jobs · Job Description · Information Security Analyst · Contract: Dallas, Texas, US · Salary: $68.00 Per Hour · Job Code: · End Date: · Days Left: 3 hours left · Apply · Below is the Job description for your reference: · Title:Information Security Analyst ...
-
Information Security Analyst
4 days ago
Collabera Dallas, United StatesHome · Search Jobs · Job Description · Information Security Analyst · Contract: Dallas, Texas, US · Salary: $68.00 Per Hour · Job Code: · End Date: · Days Left: 1 days, 3 hours left · Apply · Below is the Job description for your reference: · Title:Information Security ...
-
Cyber Security Analyst
3 days ago
Rayburn Electric Rockwall, United StatesGeneral Summary · Cybersecurity Analyst is responsible for monitoring the organization's computer systems, networks, identifying vulnerabilities, and implementing security measures to help protect the organization from security breaches and cyber threats. The Cybersecurity Analy ...
-
Security Data Analyst
3 weeks ago
Jack Henry Allen, United StatesAt Jack Henry, we deliver technology solutions that are digitally transforming and empowering community banks and credit unions to provide enhanced and streamlined user experiences to their customers and members. Our best-in-class products are just the start as we lay the groundw ...
-
Information Security Analyst
2 days ago
Collabera Dallas, United StatesHome · Search Jobs · Job Description · Information Security Analyst · Remote: Dallas, Texas, US · Salary: $65.00 Per Hour · Job Code: · End Date: · Days Left: 2 days, 3 hours left · Apply · 100% remote Opportunity - Information Security Engineer · MUST HAVES:5+ years of ...
-
Cyber Security Analyst
3 weeks ago
Wipro Addison, United StatesAbout Wipro: · Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients most complex digital transformation needs. We leverage our holistic portfolio of capabilities i ...
Information Security Analyst II - McKinney, United States - Globe Life Inc.
Description
Information Security Analyst II
Primary Duties & Responsibilities
JOB SUMMARY
Experience what being part of the Globe Life family feels like. Be inspired by your leaders, encouraged, and cheered on by your teammates to excel and be supported in your career while working with us. We offer a competitive salary with a great benefits package, including 401(K) match, medical, dental, and vision health plans, short – term and long-term disability, paid time off, tuition reimbursement and other career development opportunities.
The Information Security Analyst is responsible for establishing and executing a portion of the Globe Life Information Security Program to provide information security services that support the reduction of business security risk. This position performs attack surface assessments of systems and networks within the network environment or enclave and identifies where those systems/networks deviate from acceptable configurations, enclave policy, or local policy. Measures effectiveness of defense-in-depth architecture against known threats. This position will evaluate activities and metrics of security programs and identify areas for improvement in execution, coverage, and reporting. This also supports the creation, review, and support of enterprise security policies, standards, and supporting documentation.
PRIMARY DUTIES & RESPONSIBILITIES
Required Skills
KNOWLEDGE, SKILLS, & ABILITIES
Applicable to all employees of Globe Life & Accident and its subsidiaries:
Required Knowledge & Experience
EDUCATION & WORK EXPERIENCE REQUIRED