Security Analyst

Every year, nearly 200 million travelers trust our client to get them where they're going. Take your career to new heights by working for this longstanding leader in air travel that services more worldwide destinations than any other airline.

We are looking for a Security Analyst to join our team for a long-term contract, hybrid in Atlanta, GA.

Contract Duration: 12 Months

Required Skills & Experience

• Experienced security 3rd party risk analyst who knows general security practices.
• Has worked with 3rd party tools on submitting and receiving security questionnaires, and the ability to assess the responses. Experience speaking with vendors to gain more insights.
• Ability to handle pressure and urgent requests.
• 2-6 years experience required. 5 or more years of experience with information technology security programs, audits, controls and/or third-party risk management
• Exceptional written and verbal communication skills

Desired Skills & Experience

• Key industry certifications such as CISA, CISM, CISSP, CRISC, etc.
• Knowledge of industry standard frameworks such as NIST Cybersecurity Framework, ISO 27001, NIST 800-30, etc.
• Familiarity with third party information security attestations/certifications such as SOC I/II reports, ISO, PCI-DSS, SOX.
• Comprehensive knowledge of third-party risk concepts, methodologies, governance structures and experience in managing risk and performing vendor risk assessments

What You Will Be Doing
Daily Responsibilities

• Responsible for analyzing the information security environment and assisting with the development of security measures to safeguard information against accidental or unauthorized modification, destruction, or disclosure.
• Work with management, development personnel, risk staff, auditors, facilities, and security department personnel to identify and implement security plans to ensure that all information assets are appropriately safeguarded, including the following:, software applications, hardware, telecommunications, and computer installations.
• Determine methods of implementing and enforcing security policies. Responsible for maintaining a high level of user trust and confidence in the group's knowledge of and concern for security of systems, while working on multiple network security projects.
• Lead development of information security technology tasks and projects.
• Generate, coordinate, and maintain of project plans.
• Develops cost analysis estimates for information security tasks and projects.
• Keep project plans updated as required. Interact with customers as required by project objectives.
• Understanding of business process as it relates to information security.
• Define, redesign, and document security processes and procedures. Coordinate the development and delivery of awareness for information security.
• Work with resource owners to determine appropriate security policies for securable resources.
• Consult with IT staff to evaluate, select, install, and configure hardware and software systems that provide appropriate security functions.