DescriptionThe Information Security Risk and Compliance Analyst 2 is an entry 2 level professional position that works on assignment with clear instruction and supervision from leaders to leverage available tools and processes in the defense of applications, systems and networks. This position may also be assigned to help document and implement controls and practices that meet the Church’s defined policies and standards for risk and compliance.
This individual works with divine guidance to provide or support technology that furthers the mission of the Church and reflects the eternal impact of the gospel.
We value early, mid and late-career candidates and encourage all applicants with the posted skills and abilities to apply.
ResponsibilitiesAs assigned, assist with the remediation of vulnerabilities and threats
Assist in additional discovery and investigation under the direction of incident responders and/or security managers
Review documentation and reports to identify gaps, vulnerabilities, and issues to be escalated for further evaluation
Assist in the investigation and analysis of technology audit recommendations
Assist in the clarification and documentation of identified problems for future recognition and remediation
Knowledgeable and current in information security practices, trends and technologies
Qualifications
- Bachelor’s degree in related field or equivalent professional experience
- One year of experience in security, privacy, business continuity, or compliance
- Knowledge of security risk and/or compliance assessment
- Good interpersonal and collaborative skills with ability to work effectively as part of a team
- Professional written and oral communication skills
- Detail-oriented with the proven ability to follow instructions
- Works well with others, especially those in complementary roles
- Ability to monitor and analyze operational reports and logs looking for irregularities and abnormal patterns
- Basic knowledge of IT organization patterns
- Demonstrated proficiency with MS Office, Excel, Word and PowerPoint
- This job operates in a professional office environment
- To successfully perform the essential functions of the job there may be physical requirements which need to be met such as sitting for long periods of time and using computer monitors/equipment
Preferred:
- Significant Internship in security, privacy, business continuity, compliance or related area(s)
- One or more of the following certifications: GSEC, GCED, GCDA, Security+, Security Pro or equivalent
