Information Technology Security Specialist

Charlotte's Web Hemp Boulder , CO 80301

Posted 4 weeks ago

Position Summary:

The Information Technology Security Analyst will be responsible for day-to-day maintenance of IT security administrative functions including security reports review, and IT risk assessment data entry.

Essential Duties:

  • Support IT risk assessments' data and documentation collection and assist with IT risk assessments as directed by the Chief Information Officer.

  • Collect key performance indicators as requested.

  • Administer and monitor phishing testing; provide quarterly reports to the Chief Information Officer.

  • Analyze, monitor and document PCI (Payment Card Industry) annual assessment

  • Manage company network penetration testing.

  • Review and escalate IT alerts for failed backups, network events or IT policy violations to supervisor.

  • Review key systems daily for IT security exceptions: antivirus, data backup, replication. Report exceptions to IT management.

  • Collect and review network topology maps.

  • Schedule and report on business continuity testing as determined by the BCP testing matrix.

  • Track and update status of open audit, exam, and IT security findings as required by the Chief Information Officer.

  • Ensure that all related documentation (security audits, test results, documentation, etc.) are created, maintained and available in a central repository.

  • Coordinate cross-functionally with other departmental managers and Subject Matter Experts (SMEs) in Information Technology, Accounting / Finance, Marketing, Ecommerce, Sales, Supply Chain, Manufacturing, and Cultivation

  • Support corporate objectives and global growth strategies

  • Oversee day-to-day technical management and administration of the security platforms

  • Plan the tactics for cumulative updates and system upgrades

  • Provides recommendations for improvements

  • Responsible for escalating support issues to third-parties, as needed

  • Provide regular project status reports

  • Predict project risk factors and address proactively

Qualifications

Qualifications:

  • Minimum of 3-4 years of experience with cybersecurity

  • CISSP certification preferred

  • Experience with Financial Management, Supply Chain, Warehouse Management, and Manufacturing

  • Experience working with an eCommerce platform

  • Bachelor's Degree in Information Technology, or related field

  • Excellent planning and project management skills

  • Self-starter with a high level of initiative and strong sense of ownership

  • Strong communication and interpersonal skills

  • Experience working in the CPG industry preferred

  • Experience with both B2C and B2B business models preferred

Benefits: We offer best-in-class benefits, including:

  • Company-Paid Medical, Dental, and Vision

  • 3 Weeks of Paid Vacation Your First Year

  • 401K Match with Automatic Vesting

  • Up to 9 Weeks Paid Parental Leave

  • Self-Tailored Wellness Program

  • Generous Employee Samples & Discount

  • Free RTD bus and rail pass

Charlotte's Web provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. Charlotte's Web is an at-will employer.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Systems Security Engineer (663060)

Ball Corporation

Posted 2 weeks ago

VIEW JOBS 9/1/2019 12:00:00 AM 2019-11-30T00:00 Who We Are: Ball Aerospace leads the way in designing, developing and manufacturing innovative aerospace systems. We take on some of the most complex and exciting challenges in the universe--from space and Earth science to national security and intelligence programs. We produce spacecraft, instruments and sensors, RF and microwave technologies, data exploitation solutions, and a variety of advanced aerospace technologies and products. In addition, we pioneered the development of the commercial remote sensing market, producing spacecraft and imaging systems that helped spawn a market-driven demand for imagery. Our success is built on more than products or systems. Our team of more than 3,000 engineers, scientists, technicians and support staff drives all the achievements at Ball Aerospace. Whether contributing to a better understanding of the universe or helping keep our nation safe, our people bring their diverse backgrounds, perspectives and skills together to achieve a common mission. Qualifications: Information Systems Security Engineer – Senior Engineer Perform the engineering of information security functions, address the security aspects associated with the engineering of non-security functions, and protect the integrity of intellectual property and otherwise sensitive data, information, technologies, and methods utilized as part of the end-to-end mission assurance effort. What You'll Do: * Apply extensive technical expertise in support of the development of System Security Plans (SSP), and implement the program security plans, policies, and procedures necessary to ensure compliance with all company and government requirements. * Coordinate security-related activities with the lead Information Systems Security Engineer (ISSE), Information System Owner (ISO), Information Systems Security Officer (ISSO), Information System Security Manager (ISSM), and Common Control Provider (CCP). * Maintain a comprehensive and holistic system view while addressing stakeholder security risks and concerns regarding information integrity and assurance implementation through the application of Systems Engineering skills. * Ensure the effectiveness and suitability of the security elements of the systems as an enabler to mission success. * Ensure that relevant threat and vulnerability data is considered in support of information security decisions. * Provide input to requirements, engineering, and risk trade space analyses to achieve a cost-effective security architectural design for protections that enable mission success. * Conduct security risk management activities, including supporting the ICD 503 Risk Management Framework (RMF), producing related security risk management information. * Support the application of Automated Information Systems (AIS) requirements necessary for the protection of all classified information processed, stored, and/or transmitted, per the SSP. * Provide and communicate understanding of both the technical and programmatic aspects of a project to the project team as well as the customer. * Provide advice, guidance, and assistance to customers, senior management and AIS managers relative to AIS security matters. * Promote development of a strong team by participation in key aspects of the project and mentoring more junior team members. * Support the generation of cost estimates for proposals. * Develop detailed development schedules and manage team activities to meet delivery milestones. * Manage company-wide technical and programmatic priorities in relation to customer technical and programmatic priorities. * Work with classified documents which requires thorough knowledge of DoD procedures for the proper usage and safeguarding of classified information. * Establish and maintain effective working relationships within the department, the SBU/SSU and the Company. Interact appropriately with others in order to maintain a positive and productive work environment. * Maintain a regular and predictable work schedule. * Perform other duties as necessary. What You'll Need: * BS degree or higher in Engineering or a related technical field is required plus 8 or more years related experience. * Each higher-level degree, i.e., Master's Degree or Ph.D., may substitute for two years of experience. Related technical experience may be considered in lieu of education. Degree must be from a university, college, or school which is accredited by an agency recognized by the US Secretary of Education, US Department of Education. * Demonstrate excellent interpersonal skills, strong written, communication, oral presentations skills, and ability to lead group discussions. Working Conditions: * Work is performed in an office, laboratory, production floor, or clean room, outdoors or remote research environment. * May occasionally work in production work centers where use of protective equipment and gear is required. * May access other facilities in various weather conditions. * Travel and local commute between Ball campuses and other possible non-Ball locations may be required. Security Clearance: Successful applicant for this position must be eligible to obtain a DoD clearance. A current DoD clearance is not required to be eligible for this position, however the successful applicant will be required to obtain a DoD clearance within a reasonable time after the offer is extended and must be able to maintain the applicable clearance. * US Citizenship is Required Relocation: Relocation for this position is Available EEO Statement: US CITIZENSHIP REQUIRED Equal Opportunity Employer Minority, Female, Disabled, Lesbian, Gay, Bi-sexual, Transgender and Veterans. Ball Corporation Boulder CO

Information Technology Security Specialist

Charlotte's Web Hemp