Control Risks is looking for an Information Security Senior Analyst to join its rapidly growing Digital Risks Americas team to work exclusively for one of our clients, a fintech, as an embedded professional for the period of 12 months, which can be extended for one additional year. The working model for this position can be totally remote. The successful candidate will need to demonstrate exceptional problem-solving skills and will need to be a self-starter, highly proactive and be passionate about the challenge of being part of an information security team in a fintech company.Tasks and responsibilities Develop, implement and monitor information security policies. Conduct risk assessments and security audits to identify vulnerabilities and implement corrective measures. Monitor and analyze security systems and event logs to identify suspicious activity or security breaches. Coordinate and perform penetration tests and vulnerability assessments. Develop and conduct security awareness training for employees. Manage and respond to security incidents, including investigation, mitigation and documentation. Stay up to date on the latest cybersecurity threats and develop strategies to mitigate them. Implement and manage intrusion protection systems, firewalls, antivirus and other security tools. Work closely with other IT teams to ensure security at all phases of systems development and implementation. Manage and monitor access to sensitive systems and information. Participate in the development and review of business continuity and disaster recovery plans. Provide technical guidance and leadership to other members of the information security team. Prepare detailed reports on the status of information security for senior management. Requirements Relevant experience in an information security/cyber security related field with the public or private sector. Degree in a field related to security, information security, intelligence or computer science. Recognized industry certification such as CEH, CISSP, CISM, CISA, CRISC desired. Understanding of the cyber threat landscape and key cyber security concepts. Ability to communicate clearly in written and oral form at senior levels. Able to explain complex technical concepts and ideas in non-technical terms. Experience in consulting and industry in IT, technology, or cyber security preferred. Experience supporting or managing IT or cyber services within the financial industry is highly desired. Good knowledge of IT and network infrastructure. Ability to see security from the attacker's point of view. Professional working fluency in English Familiarity with security tools, including CrowdStrike. Organization and ability to work independently, without the need for constant guidance. Sufficient seniority and experience to act as a technical reference within the team. Exceptional communication skills to articulate security risks and mitigation strategies to non-technical stakeholders. Ability to work under pressure and manage multiple tasks simultaneously. Critical thinking and analytical skills to solve complex security problems.
#J-18808-Ljbffr