Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Information Security Business Analyst

Expired Job

Iconma, L.L.C. Houston , TX 77020

Posted 4 months ago

Information Security Business Analyst

Location: Houston, TX

Duration: 6-7 months



  • Seeking talented people to join the Information Security Risk Assessment team under the IT Security, Risk, and Compliance organization. This team supports the mission of Protecting Our Airline by assessing the risk posed by third parties and corporate mobile devices.

Job Overview and Responsibilities:

  • The Information Security Business Analyst will support the assessment of the security practices of our third-party suppliers, ensuing they comply with client's security policies and best practices. A secondary function is to oversee compliance with mobile security policies of company issued mobile devices. This position will work very closely with technology and business stakeholders throughout the enterprise as well third-party suppliers. The Sr. Manager of Third Party Risk Assessment provides direct supervision.

Job Responsibilities;

  • Performing activities to support the third-party Information Security Assessment program by evaluating suppliers' security practices to determine security posture and readiness to securely manage client's IT assets and data they are entrusted with.

  • Providing risk-based guidance to supplier business stakeholders to ensure transparency, comprehension, and acceptance of the risks involved in doing business with each supplier throughout the supplier lifecycle.

  • Working with appropriate stakeholders and suppliers to perform security risk assessments, analyzing results to determine ongoing monitoring and remediation requirements, and monitoring to ensure remediation of security gaps in a timely manner.

  • Supporting program maturation activities though process enhancement and data analytics.

  • Developing and reporting program metrics to drive leadership decision-making.

  • May work on one or more moderate to complex projects supporting core and ancillary functions.

  • Work with internal stakeholders to gather needs and requirements, create simple workflow models, process, or application maps.


  • Possess a bachelor's degree and a minimum of 3-4 years in an analytical role with relevant technical or business experience.

  • Experience in Technology, Information Security, or Technical Risk Analysis with a solid understanding of information security fundamentals, best practices, and security regulatory requirements and frameworks such as NIST, ISO, PCI, HIPAA, SOX, Data Privacy, etc.

  • Experience with Third Party Suppliers/ Vendors or Mobile Device Security Controls.

  • Ability to analyze systems and networks for a clear written determination of compliance, residual risk, and potential vulnerability mitigation strategies.

  • Skilled at communicating (oral/written) effectively with peer group, middle, and senior management in all areas of the enterprise.

  • Skilled at working successfully with cross functional teams, soliciting requirements, conducting assessments and gap analyses, and coordinating project activities.

  • Ability to think critically and analytically.

  • Possess the ability to direct work priorities and escalate as appropriate.


  • Bachelor's degree in Computer Science, Information Systems, or Business Administration; however, technical discipline is referred.

  • Certifications: CBAP, CISSP, CISA, CISM or other information security certifications is a plus.


  • Reliable, punctual attendance is an essential function of the position.

  • The ideal candidate will have a good understanding of business process mapping, as well as analytical skills.

Skill Level:

  • Mid-Level (5-8 yrs exp.)
upload resume icon
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Director Information Security

Memorial Hermann

Posted 4 days ago

VIEW JOBS 1/12/2019 12:00:00 AM 2019-04-12T00:00 At Memorial Hermann, we're about creating exceptional experiences for both our patients and our employees. Our goal is to provide opportunities for our diverse employee population that develop and grow careers in a team-oriented environment focused on patient care. Every employee, at every level, begins their journey at Memorial Hermann learning about the history of the organization and its established culture built on trust and integrity. Our employees drive this culture, and we want you to be a part of it. Job Summary Position is responsible for planning, reviewing, and managing all activities and functions of the Information Systems Security department, providing ongoing managerial, technical and motivational leadership in support of Memorial Hermann values and objectives.Job Description Job Description Minimum Qualifications: Bachelor's degree in Computer Science or related field, or equivalent experience. Ten years of direct security related work with at least 5 years of security team management or security consulting project management. Experience developing business cases, presenting to executive management and securing funding for security solutions and programs. Experience developing a strategic security plan, solving complex problems, and leading and mentoring team members. Experience in healthcare setting with preferred exposure to Cerner and GE EHR solutions. Experience with HITRUST, PCI, and Meaningful Use requirements and audits. Demonstrated record of bringing tasks and projects to successful conclusion. Exceptional communications skills at staff, management and executive level. Must be able to work in a dynamic environment with a focus on working with customers and vendors to architect secure solutions. Demonstrates commitment to the Partners-in-Caring process by integrating our culture in all internal and external customer interactions; delivers on our brand promise of "we advance health" through innovation, accountability, empowerment, collaboration, compassion and results while ensuring one Memorial Hermann. Principle Accountabilities: Leads the development, implementation, communication, and promotion of IT security strategic plans for identity and access management, security operations and risk management programs. Develops appropriate information security policies, standards, guidelines, and procedures. Leads the evaluation, selection, implementation, and maintenance of information security systems (e.g., DLP, 2 Factor Authentication, and Cyber security). Ensures that information security systems operate according to corporate policies, external accrediting agency standards, and legal requirements. Plans, prioritizes, directs, and schedules all projects and assignments. Establishes department quality objectives and benchmarks. Designs and implements effective tools to measure performance against these standards. Recruits, trains, motivates, and evaluates a staff of highly skilled information systems professionals. Develops and maintains the department's annual operating and capital budgets. Plans and directs the development and delivery of training and educational programs for all department personnel. Provides internal and external customer support. Addresses and resolves customer issues and develops understanding of customer terminology. Understands the ISD solution segments and acts as a Solution Partner. Manages vendor relationships and participates in contract negotiations. Provides liaison services for all internal and external IT audits and audit inquiries. Ensures safe care to patients, staff and visitors; adheres to all Memorial Hermann policies, procedures, and standards within budgetary specifications including time management, supply management, productivity and quality of service. Promotes individual professional growth and development by meeting requirements for mandatory/continuing education and skills competency; supports department-based goals which contribute to the success of the organization; serves as preceptor, mentor and resource to less experienced staff. Other duties as assigned. Memorial Hermann Houston TX

Information Security Business Analyst

Expired Job

Iconma, L.L.C.