It Analyst

Profile

IT Analyst

Duties: Reporting to the IT Director, the IT Risk and Compliance Analyst is responsible for the management of the form’s information security and risk management program. This includes IT security policy, security monitoring & detection, data loss prevention, business continuity and disaster recovery, incident response procedures, cyber, network and application security assessments as well as risk assessments. The IT Rick and Compliance Analyst will adopt and implement security policies to ensure that HBS information assets are adequately protected. Supports enterprise in all aspects of information security administration. Serve as subject matter expert in specialized aspects of information security and emerging and advanced technologies. Will be trusted to handle confidential situations and data and conduct investigations and analysis. Work with IT and business units across HBS to deliver on business requirements, especially as they pertain to cyber security and compliance risk and mitigation. Develop practices to ensure that network information is secure from unauthorized access, alterations and is physically secure.Ensure the governance, maintenance and standard practice of IT security procedures Complete vendor risk assessments submitted to HBS clients and prospective clients. Respond to client Requests for Proposals (RFPs) and questionnaires related to security. Perform information security due diligence on third party vendors to determine the effectiveness of their controls to protect the firm’s data, identify any discrepancies and escalate all issues to management. Improve existing questionnaire response process. Provide threat notification to third party vendors. Track vendor mitigation progress of identified threats. Owner of security incident reporting and investigation. Assist in development, implementation, monitoring and support of access control, data confidentiality, system integrity, system reliability, system audit and recovery controls. Coordinate, execute, and provide support with Information Security & Business projects. Develop and update security policies, procedures, and best practices. Monitor and maintain data loss prevention and disaster recovery programs. Collaborate with other departments to resolve security related issues and incidents. Collaborate with other business units to ensure compliance to standards and policies. Perform security assessments, risk assessments, penetration tests and application vulnerability scans as well as manage subsequent remediation. Actively participate in outside Information Security communities. Proactively conduct security research the latest security issues and recommend security enhancements. Assist in the development, management & maintenance of the Information Security Awareness Program. Implement a security policy educational program and train end users as necessary. Coordinate awareness events and updates. Identify Information Security & Business Continuity risks to senior management & make recommendations for corrective actions/mitigation of risks. Perform other related duties as required. Understanding of information security concepts, information security awareness and third-party risk management processes, methodologies, and practices.

Additional Information

Requisition Number: ITANA001823

Company info

Hall Booth Smith, P.C.
230 Peachtree Street NW Suite 2500
Atlanta
Georgia
United States 30303-1515
Website : http://www.hallboothsmith.com/