Information Security Analyst
The Information Security Analyst is responsible for identifying, managing and reducing sensitive data risk. Enterprise data risk management is a key component of the Information Security Program and the analyst will leverage tools to reduce risk, automate changes, and analyze data to recommend use cases and information protection mechanisms, S/he will be responsible for documenting risk and communicating effectively with Business leader to ensure that all data are managed appropriately.
What you will do here:
Work with enterprise data loss prevention software to discover and protect sensitive data; recommend remediation procedures
Build automations to manage file server permissions to reduce enterprise risk
Work with business leaders to establish use cases for sensitive data e.g. determine how long data needs to be kept, who needs access and if the data need availability internally and/or externally
Apply controls (encryption protection) to sensitive files leveraging microsoft technical software appropriately based on business reviews and discussion.
Compile data analysis and regulator information to present formalized and detailed findings to IT Management in support of the Information Security Program.
Manage issues / exceptions efficiently and communicates status and resolution action plans to IT Management
Partner with internal and external auditors as well as federal regulators and department management with information security governance and compliance activity investigations.
Other duties as assigned
What you will need:
Trade or Technical School; Any related field required.
Bachelor's degree in Computer Science or related Information Technology field preferred.
2 years experience Information Security, help desk and/or desktop support required.
Expertise in file server administration – Folder , NFTS, Active Directory Groups, DFS required.
Demonstrated expertise using PowerShell – Ability to apply permission and group updates via command line required.
Demonstrated excellent communication skills including the ability to work with business leaders and communicate effectively required.
Demonstrated expertise in Reporting and Analytics – Excel and/or PowerBI preferred.
Experience using Data Protection Tools such as Varonis, Microsoft Information Protection, Microsoft Conditional Access preferred.
Specialized experience in developing and implementing process to support information security technology in the financial industry and be well versed in financial industry regulatory requirements preferred.
We are proud to be an EEO/AA employer M/F/D/V. We maintain a drug-free workplace and perform pre-employment substance abuse testing.
For additional information about our organization, careers, and benefits visit: http://www.desertfinancial.com/careers.