Position Overview This position will analyze risks and help operate the enterprise security program. The analyst shall serve as a contributor to security assessments including controls assessments, vulnerability assessments, compliance assessments, and related initiatives. This position functions as the liaison between the business users and the technical resources to be the primary person responsible to ensure all needs are met.
Position can be located in the following locations: New York, NY; San Diego, CA; Chicago, IL; Greensboro, NC; Houston, TX; Reston, VA; Toronto, Canada; Athlone, Ireland;
Essential Job Responsibilities:
Perform assessments; identify security threats and vulnerabilities across the enterprise; implement controls; provide reporting and analysis to appropriate teams
Assist compliance and promote security policies
Take appropriate actions to safeguard company information assets against current and foreseen threats
Threat surveillance; identify emerging threats and potential solutions
Implement security programs: execute project deliverables as assigned
Communicate to affected stakeholders including departments within the organization
Maintain program procedures including guidelines and flow diagrams to be implemented on an ongoing basis
Communication and outreach: maintain communication with peers throughout the organization and security contacts including Business Units and subsidiary locations; disseminate information regarding security controls and newly identified risks
Assess and measure security programs to ensure closed-loop operations
Monitoring: review security events for anomalous activity to safeguard company information assets against current and foreseen threats
Support assignments involving the execution of a series of related tasks in LAN and WAN environments
Install or troubleshoot programs within web environments
Remain current on industry standards for security in a technology environment
Minimum Qualifications:
3+ years of IT security experience
BS Engineering/Computer Science or equivalent experience required
Licensing/certification preferred (at least one of the following): CISSP, CISM, SANS, GIAC (or related), ethical hacking/penetration tester certification, and/or security risk assessment certification
Good communication skills
Experience working with internal and external clients
Knowledge/Skills/Abilities Required:
Strong written and verbal communication skills
Problem-solving skills
Ability to present information to internal and external clients in line with company objectives
Strong written and verbal communication skills
Technical Skills:
Solid understanding of vulnerability assessment, threat analysis, and reporting
Understanding and promotion of security policies
Implementation of security programs
Monitoring of security systems for threats
Knowledge of security environments
Understanding of industry standards
Understanding of endpoint security solutions, including file integrity monitoring and data loss prevention
Experience with Azure, other cloud platform as a service (PaaS) security, and using automating security testing tools
Good working knowledge with Chef (configuration management tool) and Git
General knowledge of advanced coding language such as Java, C+, etc.
The NPD Group, Inc. is an Affirmative Action/Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status or any other characteristic protected by law.