Cyber Threat Intelligence Analyst supporting IT Security team in identifying and mitigating cyber threats. Ensuring network security and protecting company secrets in high - tech environment.
About the role
- Information Security Analyst SME protecting information assets by designing and maintaining security policies. Ensuring compliance with security standards in a tech services company focused on digital transformation.
Responsibilities
- The Information Security Analyst (SME) is responsible for protecting the organization’s information assets by designing, implementing, and maintaining security controls, policies, and best practices. As a Subject Matter Expert, this role provides hands-on technical expertise, risk assessment, and advisory support across the business, ensuring compliance with security standards while enabling secure business operations.
- Compliance Monitoring: Support the implementation and monitoring of security policies to ensure compliance with applicable laws, regulations, and industry standards (e.g. ISO 27001, NIST)
- Participate in internal, external or regulatory audits as required.
- Other work or projects as assigned.
Requirements
- Aligns with our values: Excellence, Integrity, Professionalism, People Success, Customer Success, Fun, Innovation and Diversity
- Strong communication skills
- Strong problem solving and analytical skills
- Excellent problem-solving ability
- Minimum Requirements:
- Bachelor’s degree in Information Security, Computer Science, IT, or a related field (or equivalent experience)
- at least 5 years of experience in information security, cybersecurity, or IT risk roles
- Strong understanding of:
- Information security principles and frameworks
- Risk assessment and vulnerability management
- Identity and access management (IAM)
- Data protection and privacy concepts
- Experience working in a hands-on, SME or fast-growing organization
- Experience communicating policies and compliance requirements with both technical and non-technical audiences at various levels in the organization.
- Good experience in establishing and performing policy, standard and procedure assessment in a cloud-based environment, technologies, and services.
- Good experience defining, revising, and implementing corporate information security policies, standards, processes, guideline, and related regulatory expectations.
- Familiarity with various industry frameworks and requirements including NIST framework, ISO 27001, PCI DSS, SOC 2, etc.
- Passionate in ensuring the confidentiality, integrity, and availability of our critical assets and contributing to our organization's information security initiatives by applying your knowledge and attention to details.
- Able to work and communicate well with different stakeholders.
- Remains composed when decisions have to be made quickly.
- Preferred:
- Relevant certifications (any of the following):
- CISSP, CISM, CISA
- ISO 27001 Lead Implementer / Auditor
- Security+, CEH, or equivalent
- Experience with cloud security (AWS, Azure, or GCP)
- Familiarity with security tools (SIEM, endpoint security, vulnerability scanners)
- Good understanding of regulatory requirements in different markets the organization operates (e.g., MAS, HKMA, FSC, BNM, BSP, BOT).
- Good understanding of security risk and compliance assessment, process, and procedures
- Good to have Cybersecurity Fundamental certifications such as CompTIA Security+, ISC, etc.
- Able to develop and implement new and improved ways of doing work; encourage staff and guide organization and foster a positive security behavior and posture.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Risk Analyst supporting cyber risk management activities for PokerStars and other brands. Ensuring accurate risk documentation, reporting, and stakeholder engagement in Cluj - Napoca, Romania.
Cyber Security Analyst responsible for governance, risk management, and compliance projects for clients and internally at Cyberlogic. Engaging with clients on project - based work while developing policies and standards.
Analista de segurança de informação supporting the maintenance of data privacy and protection programs at Minsait. Involves audit support, training, and compliance with legislation.
IT Security Analyst assisting in managing technology environments ensuring security compliance. Supporting Brasilseg's platforms with adherence to best practices in software and hardware.
Senior Cybersecurity Analyst applying RMF concepts to enhance cybersecurity for defense program. Conducting risk assessments and developing reports, based in Colorado Springs, CO.
Junior Information Security Analyst assisting federal clients at OCT Consulting with NIST security assessments and risk analyses. Responsible for executing hands - on security control assessments and recommending process improvements.
Journeyman Information Security Analyst providing expertise to federal clients in Security Controls Assessments and Risk Analyses. Responsibilities include technical assessments and recommendations for security improvements.
Information Security Analyst supporting security practices at Silimed, the leading silicone implant manufacturer in Latin America. Ensuring compliance and resilience in critical OT & IT environments.
Security Analyst defending enterprise systems against cyber threats. Supporting threat intelligence and incident response activities in a global biotechnology organization.