Sr IT Business Systems Analyst - Security
Merci de votre intérêt pour le poste de Sr IT Business Systems Analyst - Security. Malheureusement, le poste est comblé, mais vous pouvez effectuer une recherche dans nos 1,349 emplois vacants en cliquant ici.
IN ORDER TO BE CONSIDERED FOR THIS POSITION, THE FOLLOWING BASIC QUALIFICATIONS MUST BE EVIDENT ON YOUR RESUME
BASIC QUALIFICATIONS
EDUCATION REQUIREMENTS:
GED/High School Degree
YEARS OF EXPERIENCE:
12+ years of IT experience with a GED/High School Graduate
8+ years of IT experience with Associate Degree
4+ years of IT experience with a Bachelors Degree
2+ years of IT experience with a Masters Degree
DESIRED/PREFERRED QUALIFICATIONS:
Bachelors Degree
Experience creating risk mitigation strategies
Strong demonstrated knowledge of IT risk management gained as a practitioner
Five years of experience with Information Security and Risk related processes, technologies and toolsets
Proven experience performing controls testing in compliance and vendor related audits or assessments for a large organization
Knowledge of security and privacy law/regulations, especially SOX, PCI, GLBA, HIPAA
Knowledge of Industry Information Technology Standards and Control Frameworks (NIST, ISO 27000 series, COBIT, COSO, etc)
Broad knowledge of many aspects of information security with in-depth understanding and hands on experience of many of the following areas: Firewalls, IDS/IPS, VPN, Authentication technologies, Web Filtering, Proxy Firewalls, network taps and tap aggregators
Information Security, Privacy and Governance, Risk & Compliance (GRC) certifications a plus (SSCP, CIA, CISA, CISSP, CRISC, CISM, CIPP, GIAC etc.)
Extensive background in all aspects of information security, technology governance and compliance processes.
Expert knowledge in risk assessment methodologies, security frameworks and relevant global regulations.
Possess highly developed skills in information security risk management in a complex, networked environment.
Expert knowledge of security techniques and technologies.
Strong capability to research and evaluate emerging technologies.
Strong understanding of the software/hardware/tools to support and manage the IT Security environment
Strong written and oral communication skills, including facilitation and an ability to explain complex concepts to technical and non-technical areas in the organization
Ability to work independently with minimal supervision.
Creative problem solving skills and capability to understand complex technical issues and new technologies in a fast paced work environment.
Knowledge of a broad range of technologies including, but not limited to:Endpoints – Desktop, Laptop, Servers, and Mobile – Hardware and OS, Networking – Voice and Data, Storage and Databases, Virtualization, Middleware and Web, Cloud – Internal and External/Public – Infrastructure and Software Identity and Access Management – Active Directory & LDAP – Federation & SSO
Vulnerability Scanning and Penetration Testing
Knowledge and understanding of different security products (web/email filtering, disk encryption, IDS/IPS, antivirus, vulnerability scanning, DLP, firewall, SIEM etc.)
In-depth knowledge of networks and systems with ability to understand security requirements documents for such assets as routers, switches, firewalls, Windows and UNIX systems, database systems, applications, and security architectures
Understanding of IT Health regulatory environment including HIPP, PHI and PCI-DSS
Demonstrated knowledge of information security and privacy concepts, best practices, and strategies
Excellent judgment and decision making skills when under pressure
Sound business and technical acumen
Experience with Lockpath Keylight or other GRC tools (i.e. Archer, Agilliance, BWise, BPS, Chase Cooper, Paisley, etc.) to understand, evaluate and quantify risk.
Familiarity with Risk Assessment methodologies
Knowledge of software development methodologies, application security, and OWASP guidelines
Experience with incident response and forensics
An understanding of ITIL concepts (foundation knowledge or above) and procedures.
PHYSICAL JOB REQUIREMENTS:
The physical demands described within the Responsibilities section of this job description are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
While performing the duties of this job, the employee is regularly required to be independently mobile.
The employee is also required to interact with a computer, and communicate with peers and co-workers.
ABOUT MEDTRONIC:
Together, we can change healthcare worldwide. At Medtronic, we push the limits of what technology can do to help alleviate pain, restore health and extend life. We challenge ourselves and each other to make tomorrow better than
yesterday. It is what makes this an exciting and rewarding place to be.
We can accelerate and advance our ability to create meaningful innovations – but we will only succeed with the right people on our team. Let’s work together to address universal healthcare needs and improve patients’ lives. Help us shape the future.
EEO STATEMENT:
It is the policy of Medtronic to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status or any other characteristic protected by federal, state or local law. In addition, Medtronic will provide reasonable accommodations for qualified individuals with disabilities.
This employer participates in the federal E-Verify program to confirm the identity and employment authorization of all newly hired employees. For further information about the E-Verify program, please click here:
http://www.uscis.gov/e-verify/employees
DISCLAIMER:
The above statements are intended to describe the general nature and level of work being performed by employees assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of employees assigned to this position.
