Sorry, this job is no longer accepting applications. See below for more jobs that match what you’re looking for!

Security Governance Analyst

Expired Job

Epiq Systems, Inc. Kansas City , MO 64126

Posted 6 months ago

It's fun to work at a company where people truly believe in what they are doing!

Job Description:

Will be responsible for providing day to day representation and review of Security Policies to internal and external clients to ensure tolerances are within Epiq's risk appetite. Will also assist in ensuring that the Security Program maintains suitable levels of compliance to applicable laws and regulations through adherence to Security Office policies. Will identify noncompliant and ineffective security processes and controls, including those of our critical third parties, and prioritize actions associated with their improvement. Will work with Security and Compliance teams to recommend and implement policies and procedures to ensure security meets or exceed industry standards.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

  • Manage Security Office-wide process for Policies, Standards, Procedures, and other Security Office governance documents to be developed, updated, reviewed, approved, and communicated to applicable stakeholders.

  • Author and coordinate the development and maintenance of Security Policies, Standards and Procedures with structure, quality, and organization. These will be developed in accordance with legal and regulatory requirements and compliance with frameworks including but not limited to the National Institute Standards and Technology (NIST). Collaborate with Subject Matter Experts (SMEs) to gather requirements and deliver documentation.

  • Manage a common framework for the Security Office to map relevant requirements to Security Office Policy and control objectives in order to create a clear linkage between Polices, Standards, and controls as defined by the Security Office.

  • Facilitate the management and reporting of risks identified by Epiq's risk assessment teams and the Risk Council.

  • Work with Legal, Compliance, Internal Audit, and Sales teams to ensure Security policies, processes and procedures are accurately, effectively, and consistently understood and represented throughout the company.

  • Ensure that controls are adequate to meet Security Policies; conduct assessments and audits based on laws and regulatory expectations (GLBA, FFIEC, PCI-DSS, SWIFT CSP, NIST, CIS Critical Security Controls, etc.). Design and implement accurate and thorough governance gaps assessments to applicable laws, rules, regulations, and industry practices.

  • Work independently and with the Internal Audit team to measure the effectiveness of security controls as prescribed by Epiq's Security Policy and Standards, regulatory compliance (e.g. FFIEC Cybersecurity Assessment Tool), the CIS Critical Security Controls, and ISACA's COBIT 5.

  • Manage external service providers which assist the Security Office in performing security vendor assessments.

  • Coordinate across Security Office teams a cohesive approach in assessing vendor risk across Security, Privacy and Business Continuity through common processes, reporting, and tool

QUALIFICATIONS:

  • Broad understanding of Information Security concepts.

  • Familiarity with security frameworks and various compliance requirements.

  • Communicate effectively through written and verbal means to co-workers and senior leadership and effectively manage multiple tasks simultaneously, coordinating and ensuring that scheduled goals are met.

  • Experience with the conduct of an information security investigation and remediation.

  • Experience with security technology and processes used to defend an international enterprise network.

  • Experience analyzing business or technical problems and proposing and implementing solutions.

  • Excellent communication skills, verbal and written and be a self-managed / self-driven individual.

  • Ability to deal with changing priorities and multi-task several projects.

EDUCATION AND EXPERIENCE

  • B.S. Engineering / C.S. / MIS degree highly desirable
  • CISSP/CISM/GIAC Certification highly desirable

SPECIAL REQUIREMENTS:

  • Periodic travel is required of this position with an average expectation of 10% travel

LEADERSHIP COMPETENCIES:

Results Driven - Sets stretch goals for personal and team accomplishment and works tenaciously to achieve those goals; acts with a sense of urgency; takes the initiative on actions; identifies what needs to be done and takes action before being asked; does more than what is normally required in a situation; establishes metrics to monitor progress and measure success; maintains focus by avoiding or overcoming roadblocks.

Client Focus- Takes action with the clients, both internal and external, and sees their needs as a primary focus; builds a sustaining collaborative and productive relationship with clients; seeks to understand client situations, issues, expectations, etc.; takes appropriate action to meet client needs and address concerns; implements or utilizes methods to monitor and evaluate client feedback.

Building Effective Relationships Identifies opportunities to build strategic relationships with individuals in other areas of the business in an effort to achieve business goals; develops the partnership through information exchange, clarification of partnership benefits and definition of partnership scope and expectations; recognizes the business concerns and perspective of others; shares information and own expertise with others to enable them to accomplish group goals

Integrity- Behaves in an honest, fair and ethical manner; shows consistency in words and actions; does what she/he commits to doing; respects the confidentiality of information or concerns shared by others; is honest and forthright with people; carries his/her fair share of the workload; takes responsibility for own mistakes.

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

Epiq and its affiliated companies are Equal Opportunity Employers (EOE). Qualified applicants are considered for employment without regard to age, race, color, creed, religion, sex, national origin, sexual orientation, disability, marital or veteran status or any other category protected under applicable federal, state or local law. In addition Epiq will take affirmative action for minorities, women, covered veterans and individuals with disabilities. If you need assistance or an accommodation during the application process because of a disability, it is available upon request. Epiq is pleased to provide such assistance and no applicant will be penalized as a result of such a request. Pursuant to relevant law, where applicable, Epiq will consider for employment qualified applicants with arrest and conviction records.


upload resume icon
See if you are a match!

See how well your resume matches up to this job - upload your resume now.

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Senior IT Security Analyst

Lifespace Communities

Posted 4 days ago

VIEW JOBS 1/12/2019 12:00:00 AM 2019-04-12T00:00 Don't just live life….love life! Who wants to go to a boring job? At Lifespace, we get paid to create memories for our residents! We are not limited by our job title. We are one team united by our passion for service with a dash of fun. No matter the stage in your career, this is your opportunity to be empowered to create your own lasting impression. Lifespace Communities would like to introduce the opportunity to become an Senior IT Security Analyst at the home office, located near one of the twelve Lifespace Communities. The Senior IT Security Analyst is responsible for managing IT security and IT risk (e.g., data systems, network and/or web) across the enterprise and for providing security analysis and technical support to monitor, identify, and mitigate security incidents. The Senior IT Security Analyst will lead the implementation of new security solutions, lead the creation and or maintenance of policies, standards, baselines, guidelines and procedures as well as conduct vulnerability assessments and compliance activities. A few other details about the role: * Provide network and security operations technical analysis, assessment and recommendations in the areas of real-time security situational awareness, operational network and applications systems security monitoring. * Monitor all security solutions for efficient and appropriate operations and provide recommendations for additional security solutions or enhancements to existing controls, to improve overall enterprise security, including the analysis of third party applications security controls to ensure they reflect current industry best practices. * Administer third party applications to manage version control and security patching. * Maintain detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the identification and resolution of vulnerabilities and threat vectors. * Lead the design and execution of vulnerability assessments, penetration tests and security audits and develop responses to assessments and audits to address and resolve any potential areas if risk. * Lead the creation and maintenance of enterprise security documents (policies, standards, baselines, guidelines and procedures). * Address questions from internal and external audits and examinations and manage/track implementing security related audit responses. * Lead the review of logs and reports of all devices, whether they are under direct control (i.e., security tools) or indirect control (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution. * Comply with applicable federal, state and local laws, rules, and regulations; maintains knowledge of and follows all company policies and procedures. * Obtain knowledge and demonstrate the principles of Living Lifespace , person directed care and successful aging philosophies and their inherent core values of commitment, respect, compassion, dedication, team work and quality. Team member will support, actively participate and act in accordance with the principles of the Living Lifespace service culture and be familiar with and fluent in the language and service pillars of Living Lifespace. * Maintain regular and punctual attendance at work and meetings. And here's what you need to apply: * Associates Degree required. Bachelor's degree preferred * Minimum of five years of experience in IT security role required. * CISSP, CISM, or other IT security certifications are preferred. * Experience with managing security controls and compliance (SOX, HIPAA, PCI, etc.). * Understand of security standards, such as COSO, NIST, ISO 27000, ITIL. * Expertise with enterprise management of Anti-virus and encryption tools. * Proficiency in Active Directory Management and network security. * Solid organizational skills including attention to detail and multi-tasking skills. * Ability to read, write and speak English sufficient to perform job duties and to interact and communicate with residents, vendors and team members. Lifespace has enjoyed over 40 years of success and this is just the beginning. With new opportunities, continued growth, and the support from your Lifespace family get ready to ignite your life and experience Living Lifespace. ORGANIZATIONAL OVERVIEW: Lifespace Communities, Inc headquartered in West Des Moines, Iowa, is the nation's tenth largest senior living provider of non-profit retirement communities. The organization has annual revenue of over $250 million and employs over 2,800 team members. Lifespace Communities is an Equal Employment Opportunity Employer. Through more than 40 years of existence, Lifespace has remained true to its founding ideal: to help create exceptional, financially sound communities where people could enjoy a more rewarding and secure retirement. The organization is committed to excellence and innovation in creating communities that celebrate the lives of seniors. Lifespace serves over 5,000 residents. The Lifespace Communities are as follows: * Abbey Delray - Delray Beach, FL * Beacon Hill - Lombard, IL * Deerfield Retirement Community - Urbandale, IA * Friendship Village Of South Hills - Upper St. Claire, PA * Harbour's Edge - Delray Beach, FL * The Waterford - Juno Beach, FL• Abbey Delray South - Delray Beach, FL * Claridge Court - Prairie Village, KS * Friendship Village Of Bloomington - Bloomington, MN * Grand Lodge At The Preserve - Lincoln, NE * Oak Trace - Downers Grove, IL * Village On The Green - Longwood, FL Accessibility: If you need an accommodation as part of the employment process please contact Human Resources at Email: ASKHR@LIFESPACECOMMUNITIES.COM Equal Opportunity Employer, including disabled and veterans. If you want to view the EEO is the Law poster, please choose your language: English – Spanish – Arabic - Chinese If you want to view the EEO is the Law Supplement poster, please choose your language: English – Spanish – Chinese If you want to view the Pay Transparency Policy Statement, please click the link: English To see other positions, click here. Lifespace Communities Kansas City MO

Security Governance Analyst

Expired Job

Epiq Systems, Inc.