We have moved! Please follow this link to view our current openings.

Senior Security Remediation Analyst

Location: Shakopee, Minnesota, United States
Date Posted: 23-05-2017
Information Security Remediation Analyst                                                    REQ# 5624
The Senior Security Remediation Analyst will work as part of the Defensive Cyber Operation (DCO) team. The successful candidate must be a motivated remediation lead. This position will be based in our Shakopee, Minnesota office and will report to the Threat & Vulnerability Manager.
  • Provide leadership, guidance, and technical expertise to high profile security remediation efforts.
  • Work closely with the application, infrastructure, and security teams across the enterprise.
  • Work with entire CISO staff (e.g., DCO Architecture, and the Governance Risk and Compliance teams) to evaluate security findings and rank remediation recommendations according to enterprise risk.
  • Coordinate and drive all Information Security Remediation Management activities which will consist of understanding the non-compliant/security issues, remediation need, establishing remediation ownership, collaborating on possible remediation solutions, reviewing & approving key deliverables, and monitoring remediation to resolution.
  • Act as a Subject Matter Expert on Entrust Datacard security policies, standards, and hardening procedures.
  • Work collaboratively with other groups across the organization and communicate effectively with all levels of management.
  • This role will be responsible for reporting and remediation guidance on multiple US Federal systems.
  • US Federal data must be handled by a US Citizen and information kept within American borders.
  • Keep up-to-date on new vulnerabilities and how they pertain to the Entrust Datacard environment.
  • Review and perform analysis of vulnerabilities.
  • Work with eGRC tooling to document remediation requirements.
  • Work with infrastructure teams to determine exceptions where applicable.
  • Communicate to internal teams vulnerabilities that have potential to impact the business.
  • Follow up with internal teams to ensure remediation is being performed.
  • Other duties as required.
Basic Qualifications:
  • Minimum 3+ years of Information Security expertise
  • 5+ Years infrastructure experience as a System/Network Engineer
  • Bachelor's Degree in Computer Science, Engineering, Information Security, equivalent work experience, or military background
  • Excellent written and verbal communication skills with the ability to explain complex technical concepts in business terms
Preferred Qualifications:
  • Assertive and self-driven individual who can ensure tasks are followed through until completion
  • Attention to detail and motivated to deliver exceptional quality
  • Detailed knowledge of system security vulnerabilities and remediation techniques, including penetration testing and the development of exploits
  • Ability to travel to Canada for meetings and team events as needed
  • Familiar with industry standard security frameworks such as, ISO 27001:2013, NIST, and/or Webtrust standards
  • Project Management skills and approach for IT related activities and projects
  • Excellent communication and written skills along with experience preparing reports for senior executives
  • Proven understanding of Enterprise Network devices (i.e. routers, switches, firewalls)
  • Proven understanding of Operating platforms (i.e. UNIX , Linux and Microsoft)
  • Experience preparing and testing IT Contingency Plans
  • Keen attention to detail
  • Vendor and industry certifications in networking and security such as Palo Alto CNSE, CISSP, or other related certifications
  • Expertise with industry standard frameworks (ISO, NIST, PCI, Safe Harbor) would be an asset
  • Experience with Vulnerability Assessment Platforms and reporting tools such as Tenable and Rapid 7
  • Bachelor’s degree in Information Systems, Computer Science
  • Experience with eGRC tools and processes
  • SSL Certificate knowledge
  • ITSM/ITIL knowledge
  • Industry certifications (e.g. CISM, CISA, CRISC, CISSP, CIPP, PMP)
Our growing company relies on curious, dedicated and innovative colleagues to anticipate the future and provide solutions for a more connected, mobile and secure world. Entrust Datacard technologies and expertise help government agencies, enterprises and financial institutions in more than 150 countries serve and safeguard citizens, employees and consumers. Each year, our solutions secure billions of transactions — and every day, our technologies issue and manage more than 10 million secure identities. How do we do all of this? Together.
Join us. Together we’ll create solutions for a more connected, mobile and secure life.
For more information, visit www.entrustdatacard.comFollow us on Twitter, YouTube and LinkedIn.
Entrust Datacard Corporation is an EOE/AA/Veteran/People with Disabilities employer.
this job portal is powered by CATS