Information Security Analyst (5580)

Information Security Analyst

Role Responsibilities:

• Promote employee cybersecurity awareness and manage phishing email campaign platforms
• Manage supply chain security, including conducting information security assessments for company vendors
• Lead and manage risk assessments and penetration tests
• Track, manage, and remediate cybersecurity risks and exposures
• Manage and support compliance processes for ISO 27001 and PCI standards
• Own and maintain information security and cyber security policies and procedures
• Produce reports and prepare presentations for senior management

Required Experience & Skills:

• At least 1 year of experience in Information Security, including risk assessments and penetration testing management
• At least 1 year of experience and familiarity with information security standards such as ISO 27001 and PCI
• Experience in project management, preferably within the information security domain
• Experience with phishing campaign management platforms – Ironscales is an advantage
• Familiarity with the insurance industry – an advantage
• Highly organized, detail-oriented, and able to work independently
• Assertive, with the ability to operate effectively in a large organization and work with multiple stakeholders
• Strong interpersonal skills and the ability to manage multiple tasks and interfaces simultaneously