Security Analyst Ii - Ciudad de México - DYOPATH

DYOPATH

Empresa verificada

Ciudad de México

hace 1 semana

Publicado por:

Rodrigo Fernández

Reclutador de talento para beBee

Descripción

DYOPATH, a leading Managed Service Provider (MSP), was founded to empower organizations by delivering trusted IT solutions. At DYOPATH, we pursue both purpose and success, knowing one will ultimately lead to the other. Our core values foster a culture that promotes accountability, excellence, exceptional customer service, and sustainability. Our team is passionate, fun, creative, and courageous in communications.

Essential Duties

Translate organizational compliance requirements into documented processes, procedures, guidelines, and standards.
Maintain and update documentation, processes, procedures, guidelines and standards.
Perform vulnerability management activities: identify vulnerabilities, investigate/recommend options to mitigate, coordinate/perform remediation, and validate compliance.
Conduct analysis of system designs, processes, and procedures to document the applicable security controls.
Respond to thirdparty security assessment, penetration test, and other evaluation findings.
Demonstrable ability to occasionally interface with C and Directorlevel personnel with respect to security topics or, at the minimum, aid in preparation for interfacing.
Provide project management, communications, task assignment/tracking, reporting and other activities as required to support responsibilities.
Evaluate security products and provide senior management with technical and financial decision support for the selection and integration of all securityrelated technologies.
Maintain ongoing industry knowledge in the following securityrelated areas:
(a) pertinent government legislation, regulation, policies, and practices related to information systems security;

- (b) methodologies and best practices that are commonly used in the information systems security industry;
- (c) existing and emerging COTS software packages, network and telecommunications equipment that support security controls;
- (d) ongoing sensitivity to and analysis of threats and vulnerabilities including their potential impact on information security.

Exhibit strong writing and editing skills, as well as the ability to work closely with all business areas to develop new and existing documentation.
Review, update, and format organizational policies in accordance with applicable compliance requirements.
Aggregate, parse, rearrange, and revise current documentation according to security requirements, standards, and formats.
Review vendor documentation for relevant content to aid in development of processes, procedures, standards, and guidelines.
Create new documentation for processes, procedures, training materials, user guides, webbased content, release notes, internal and external presentations, etc.
Support the conduct of proofofconcept efforts for evaluation of securityrelated products.

DYOPATH Resource will have the Required Skills and Knowledge:

Resource will be fluent in English and Spanish
Demonstrated current broadbased understanding of system architecture, computer technology, design, standards, and products based on both solid formal training and experience
Demonstrated skills with relationship building, oral and written communication and people management
Experience with using security scanning tools such as Nessus, Tenable
Experience with security tools such as SIEM and EDR

Qualifications

Bachelor's Degree in Information Systems, Information Technology, Computer Science, Engineering or Equivalent Experience (High School Diploma / GED with a minimum of 4 years of industry experience
Minimum of 4 years of information technology experience
Minimum of 3 years of information security, IT Compliance or Cloud Administration/Development/Deployment experience
Experience with Penetration Testing and/or Vulnerability Scanning
Good command of scripting (Powershell, Python etc)
Hands-On experience with customer and commercial IT solutions
Understanding of cybersecurity threats and vulnerabilities related to IT system architectures and design
Familiarity with NIST, ISO, or other security frameworks
Command of the Spanish and English language