Information Security Analyst (Architecture) (2520-1)

Job Title: Information Security Analyst (Architecture)Location: Deerfield Beach, FL (Remote)Duration: 12 MonthsJob Description:

• Produce artifacts (including threat models) and documentation with Delivery Architects to ensure secure designs
• Identify needed security controls in designs
• Communicate security requirements to project teams
• Identify threats and risks in designs
• Identify and document security design patterns

• 2+ years experience working in Cybersecurity or Information Security & Data Protection domains
• Experience evaluating, building and optimizing security design and controls to comply with requirements, policies, standards, and best practices
• Ability to understand secure design best practices, risks, technical debt
• Working knowledge of governance and compliance, including policy, process, governance, controls frameworks, and regulatory environments
• Ability to work with cross functional teams (Security Architect, Delivery Architect, Technical Lead, Business Analyst, etc) to ensure secure architecture and design
• Understanding of threat modeling and mitigations (preferred: MS Threat Modeling Tool)
• Ability to work with multiple large projects simultaneously
• Ability to collaborate with Security Architects to develop secure designs and compensating controls
• Strong organizational skills with ability to thrive in a sense-of-urgency environment, leveraging best practices, and approaching any problem as a team-player with a can-do attitude
• Strong written and verbal communication skills and ability to interface with all levels of business and executive leadership
• Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance and professionalism
• Excellent analytical, problem solving, and decision-making skills, applied with a solution-focused attitude
• Ability to maintain and foster relationships and trust with key partners and stakeholders throughout the company
• Understand contractual elements with third parties and intelligently speak on the security requirements of a contract from an information security point of view
• Desired Skills:
  • Familiarity with MS Threat Modeling Tool
  • Familiarity with Azure DevOps/Boards
  • Familiarity with cloud computing environment(s) - Azure, AWS, Google
  • Professional Services background including extensive exposure to PCI-DSS, HIPAA, NACHA, ISO 27001, and Privacy Laws
  • Proven ability of successful execution of multiple projects
  • Excellent technical capabilities around information security, and understanding technology risk assessments and priorities
  • Experience working with auditors
  • Act as an advocate for information security practices
  • Ability to present and defend design decisions and recommendations
• Certifications:
  • One or more of: Security+, CISA, CGEIT, CRISC, CEH, CDPSE, CISM, CISSP

• Comprehensive medical benefits
• Competitive pay, 401(k)
• Retirement plan
• and much more!