Security Analyst

Job Description

Role: Security Analyst

Location: Boston, MA

Duration: 6-12+ Months Contract

!! Need Green Card, US Citizen Candidates Only !!

Required qualifications

Bachelor's degree in Business, with IT audit or compliance experience, or Computer Science, with business and IT Audit/Compliance experience desired

5-7 years of IT experience

3 years of Security Analyst experience

Knowledge of regulatory standards SOC, ISO, privacy shield is a plus.

Experience with various technologies, including SharePoint, networks, platforms, and applications. Knowledge of IT audit methodologies and control frameworks.

Knowledge of Linux is a plus

Familiarity with security scanning and penetration tools (OpenVas, Qualys, Acunetix) is a plus CISSP is preferred

Description:

We are looking for a highly motivated individual to join our Information Security team. The team is responsible for overall security of information systems at efront and their compliance with CIA principles of

information security.

Responsibilities:

Provide information security expertise to assist with achievement of information systems compliance programs (SOC2 Type 2, ISO27K) Provide information security expertise during pre-sales, sales and

post-sales activities at eFront Propose and implement corporate business processes that improve overall security posture at eFront Perform regular security and privacy policy reviews Maintain knowledge

of constantly changing security and privacy landscape and propose initiatives related to industry changes Work with internal and external stake holders on security audits and remediation processes

Responsible for monitoring internal compliance against information security policies and standards by conducting testing and internal control reviews and risk assessments.

The individual will maintain awareness of external regulations for new or changed requirements within IT and identify industry standards from which base core IT processes (e.g. ISO27001, NIST, SSAE16,

etc.) are established.

This position represents the company’s interest with customers, external and internal auditors and 3 rd party service providers.

Facilitates with internal and external audits within IT, as well as periodic assessments to address specific risks.

Reviews IT audit results with the various IT functions providing observations, recommendations and conclusions as well as assist in identifying and communicating control gaps and evaluating management

remediation action plans and related reporting

Qualifications

Additional Information

** U.S. Citizens and those who are authorized to work independently in the United States are encouraged to apply. We are unable to sponsor at this time.
** All your information will be kept confidential according to EEO guidelines.