Welcome page Returning Candidate? Log back in! Sr. Information Security Analyst Job Locations US-NY-Rochester ID 2024-4510 Overview

Who we are—

 

Transcat is a dynamic, innovative, growing company that has been recognized as the leading calibration and compliance services provider in North America and beyond.  With over 1,000 employees—in technical, consulting, operational, sales, finance, and corporate roles—we have stood the test of time by delivering on our Trust in Every Measure promise to our customers in vital industries, including life sciences, aerospace, defense, energy, and utilities.  We fulfill this promise through our employees, who live Our Values every day, the Transcat Way.  Our employees are at the center of the rewarding, challenging, and life-changing work we do for our customers and those they serve.  Are you ready to join a company where the work you do makes a difference, and where you can grow in your career? 

 

Here’s what Transcat has to offer—

 Work that matters

A values-based culture where people care about each other and the work they do togetherFlexibilityTraining and development to accelerate learning and career advancementCompetitive compensation and benefits, including paid time off, health insurance, tuition reimbursement, retirement, stock purchase plan, and MORE!Salary range is $87,000 - $120,000

 

Position Summary

We are seeking a highly motivated, hands-on, technically proficient, and detail-oriented Senior Information Security Analyst to join our growing security team, with a focus on Governance, Risk, and Compliance (GRC). The ideal candidate will have a strong understanding of cybersecurity principles, compliance requirements, and governance risk and controls frameworks. The ideal candidate will also have strong technical proficiency to assist in hands-on remediation of networks, systems, and other related remediation activities.

 

This individual will spearhead efforts across the organization, working with senior leaders in business and IT as well as external 3rd parties to establish and sustain a comprehensive and compliant security strategy across the enterprise. This person’s main duty will be to identify, develop, implement, and mature people, processes, and technology to reduce information security and data privacy risks while ensuring compliance with industry best practices and frameworks.

Responsibilities Partner with IT and other business leaders to maintain Disaster Recovery and Business Continuity PlansSupport the definition and implementation of corporate security policies, procedures, standards and controls; ensuring they are tailored to specific business needsAnalyze security incidents, responses, and resolutions. Prepare reports for management and stakeholders, providing insights into network security performanceConduct regular risk assessments of the network infrastructure and identify potential security weaknesses. Collaborate with others to prioritize and address the identified risksWork closely with executive management to determine acceptable levels of riskPromote a security-conscious culture within the organization by conducting training programs, workshops, and awareness campaigns to educate employees about network security best practicesFoster a culture of security awareness and encourage proactive incident reportingManage relationships with third-party security vendors, ensuring that outsourced security services meet the organization's requirements and compliance standardsMonitor network security compliance with relevant regulations, policies, and frameworks. Stay up to date with evolving security threats and industry trends, recommend and implement necessary changes to maintain a strong security postureEnsure compliance with industry regulations and standards, such as ISO, PCI, SOX, and GDPEvaluate and implement new security technologiesOversee the monitoring and analysis of potential security threats and vulnerabilitiesImplement and manage security tools, such as firewalls, intrusion detection systems, anti-virus software, and authentication systemsEnsure the security of cloud services, data centers, network infrastructure, and end-user devicesConduct and/or coordinate regular security audits, penetration testing, and vulnerability assessments Qualifications

Required Knowledge, Skills, and Abilities

Self-starter with the ability to build partnerships and function effectively with limited oversightAbility to quickly learn various systems (NetSuite, Salesforce, Infor A+, other)Experience securing MS Windows Server environmentExperience securing Amazon Web Services (AWS) environmentExperience securing MS Office 365 environmentDeep understanding of, and experience in cybersecurity best practices and frameworks (ISO27001, NIST, SOC2), network security, endpoint security, identity & access management, data security, security operations, and cloud.Risk management experience with proven ability to effectively apply risk principles to challenging business situationsExcellent communication and interpersonal skills to effectively collaborate with technical and non-technical teams, both in-person and remotely; strong presentation skillsStrong problem-solving and analytical skills to identify, triage and address security risks, especially in complex, distributed environmentsProven experience in developing and implementing security strategiesIn-depth knowledge of cybersecurity trends, threats, and mitigation strategiesProven experience in managing and leading security teams, as well as hands-on involvement in incident response, security assessments, and compliance audits, including GDPR compliance. Strong troubleshooting skills for both network and endpoint security issues across Windows and Mac environments

Education and Experience

7+ years of experience in a combination of Risk Management, Information Security and IT rolesBachelor’s degree in Information Security, Computer Science, Information Management Systems, or related field required. Master’s degree preferred.Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP) or Certified Information Systems Manager (CISM), preferred

 

Physical Demands

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

 

While performing the duties of this Job, the employee is regularly required to stand; walk; use hands to finger, handle, or feel; reach with hands and arms; climb or balance and stoop, kneel, crouch, or crawl. The employee is occasionally required to sit and talk or hear. Specific vision abilities required by this job include close vision, color vision and ability to adjust focus.

 

Work Environment

The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.  The noise level in the work environment is usually moderate.

 

Contingencies

All offers of employment are contingent upon successfully completing all pre-employment requirements, which include verification of identity and employment eligibility, and when applicable, a motor vehicle driving record report.

 

Equal Opportunity and Non-Discrimination

Transcat is an equal-opportunity employer and prohibits discrimination on the basis of any protected status.  All qualified applicants will receive consideration for employment without regard to age, color, creed, disability, domestic violence victim status, gender identity, genetic predisposition or carrier status, marital status, national origin, pregnancy, race, religion, sex, sexual orientation, status as a protected veteran or as a member of any other protected group or activity.

 

We will make reasonable accommodations for personnel with disabilities to enable them to perform the essential functions of this position unless doing so poses an undue hardship to the company or a direct threat to health or safety.

Options Apply for this job onlineApplyShareEmail this job to a friendRefer Sorry the Share function is not working properly at this moment. Please refresh the page and try again later. Share on your newsfeed Application FAQs

Software Powered by iCIMS
www.icims.com