Find Jobs Find Talent
Information Technology/Information Security Auditor
Culver City, CA  |  Onsite
Contract Position
It appears that you have already applied to this job.
Applied on July 3, 2022
Job Id #56161 Posted May 5, 2022

Summary
The Information Security and Compliance Analyst is responsible for maintaining the physical and information security programs. Under the supervision of the ISO, this position manages the planning, execution, and assessment of physical and information security strategies, policies, procedures, and practices implemented by the organization. The Information Security & Compliance Analyst confirms that all physical and information assets are adequately protected against current/future internal/external threats through managing a comprehensive risk management program that includes risk & vulnerability assessments, implementing sufficient security controls, and training and awareness programs.

Supervises
• None

Essential Functions
• Oversees the implementation and execution of the organizational Information Security program.
• Monitors compliance with federal and state regulations; reviews information security standards and frameworks from multiple sources (e.g. NIST, CIS, HIPAA etc.) and recommends appropriate policies and procedures, tasks, and checklists aimed to enhance controls and reduce overall business risk.
• Monitors the regulatory environment and advises on changes in requirements / expectations. Recommends plans to maintain regulatory compliance.
• Creates and maintains applicable physical and information security policies and procedures.
• Maintains and oversees administrative, technical, and physical and safeguards and controls.
• Assesses risk levels associated with sharing organizational data with third-party vendors and partners and applies appropriate safeguards.
• Assesses and evaluates information security risks through various risk assessments methods and provides risk response strategies as appropriate.
• Recommends and performs general and specialized physical and information security awareness training and education programs as necessary.
• Creates and maintains System Security Plans (SSP).
• Assesses and documents facility and system role-based access; enforces documented facility/systems access through periodic audits.
• Creates and maintains Plans of Action and Milestones (POA&M). Tracks progress and assess overall risk.
• Develop responses to information security audits and Request for Comments/Information (RFP/RFI).
• Oversees and maintains the information security incident response, Disaster Recovery plan, and other applicable contingency plans; organizes and conduct adequate contingency plans, incident management, and simple recovery tests periodically.
• Creates and maintains physical and information security dashboards and management reports relative to the confidentiality, integrity, and availability of systems, facilities, and workforce.
• Collaborates and coordinates with all other functional areas at Pondera to maintain up-to-date business continuity plan and ensure those plans are consistent across the enterprise.

Education and Experience
Required
• Bachelors Degree in computer science, business, finance, information systems, mathematics or a closely related field;
• 5 years of information technology experience including information security and enterprise wide administration; OR
• Equivalent combination of education and experience.

Licenses, Certifications
Required
• None

Preferred
• CISSP, CISM, CompTIA Security+, or similar.

Knowledge, Skills and Abilities
Required
• In-depth knowledge of information security technologies, markets and vendors, including firewall, intrusion prevention/detection, proxies, risk assessment tools, cryptography, identity management systems, certificate authority, and secure web and application development.
• Strong knowledge of computer networks, directory services, virtualization and storage technologies and hardware and High Availability (HA) systems.
• Strong knowledge of HIPAA compliance and NIST standards.
• Strong knowledge of information systems industry and best practices in network, application and hardware platform security and the ability to apply them effectively.
• Strong knowledge of application security, database technologies used to store enterprise information, directory services and information systems auditing.
• Strong knowledge with security incident response practices and the ability to apply them effectively.
• Experience working with logging, monitoring, and auditing systems and the ability to design appropriate traps/triggers.
• Experience with performing and interpreting vulnerability scans and pen tests.
• Ability to quickly and effectively react to daily threats from external and internal sources.
• Ability to construct and maintain effective relationships with vendors and strategic partners.
• Very strong oral and written communication skills, including the ability to communicate professionally, effectively and persuasively both orally and in writing to business and technical users; includes the ability to effectively explain complex information and tailor presentations to a specific audience.
• Very Strong critical and analytical thinking and research skills.
• Strong organizational and collaboration skills with the ability to effectively manage multiple priorities, facilitate discussions, obtain consensus, and resolve conflicts.
• Ability to treat confidential information with appropriate discretion.

 

Horizontal is proud to be an Equal Opportunity and Affirmative Action Employer. We seek to provide employment opportunities to talented, qualified candidates regardless of race, color, sex/gender including gender identity and/or expression, national origin, religion, sexual orientation, disability, marital status, citizen status, veteran status, or any other protected classification under federal, state or local law.

In addition, Horizontal will provide reasonable accommodations for qualified individuals with disabilities. If you need to request a reasonable accommodation in order to complete the application or interview process, please contact hr@horizontal.com.

All applicants applying must be legally authorized to work in the country of employment.

EQUAL OPPORTUNITY EMPLOYMENT SURVEY

What is your gender?

What is your ethnicity?

What is your Veteran / U.S. Military Status?

Do you identify with one or more of the classifications of protected veterans below?

If yes, please indicate by checking the appropriate box below

Do you have a disability?

You are considered to have a disability if you have a physical or mental impairment or medical condition that substantially limits a major life activity, or if you have a history or record of such an impairment or medical condition.

Horizontal is proud to be an Equal Employment Opportunity/Affirmative Action Employer providing a drug-free workplace.

Success!

You have saved your first job! To see all your Saved Jobs, click here. Or continue scrolling through jobs and bookmark openings that catch your eye and apply for those jobs later.

Return to Job Search
Close

We’re sorry!

There are currently no open positions in your location or accepting applications from out of the country

Return to Home
Close
X
Cookies help us improve your website experience.
By using our website, you agree to our use of cookies.
Confirm