Security Analyst

Job Description

We are seeking a member of the Truvantis consulting staff, to provide security and compliance expertise to help our customers protect their data and environments. This trusted advisor to our customers will help them understand their environments, deliver quality and practical guidance on identifying and addressing potential risks. The initial engagement will be a focused effort on ISO27001 for an established customer. Contact us by applying HERE.

Key Responsibilities

Interface with customers to assess, develop and improve their information security programs in cooperation with other Truvantis team members and through any of the following tasks:

  • Document policies, processes and controls
  • Support audit preparation through review of requirements, evidence collection, and engagement with third-party auditors
  • Provide recommendations and remediation plans
  • Lead conversations with customers to support their evaluation of risk and severity of issues

Required Skills & Qualifications

  • Five (5) or more years direct experience in information security, IT security or related field
  • Minimum of five (5) years of verifiable ISO27001 experience in the past seven (7) years
  • Experience writing policies and procedures in support of compliance frameworks
  • Excellent verbal and written communication skills
  • General knowledge of all security and ISO27001 domains
  • Critical skills and characteristics: Self-starter, strong team collaboration, ability to maintain a trusted role and interface with customers, leadership, sense of accountability, independent decision making ability and overall project coordination skills, relationship building, analytical problem solving and risk identification/mitigation

Desired Skills

  • Audit, compliance and validation experience
  • Experience leading internal/external audits or assessments
  • Experience with security frameworks or compliance standards, including PCI-DSS, HIPAA, CIS Controls, NIST, SOC2

Certifications

  • CISA, CISM, PCI-QSA, CISSP, CIPP or other information security, audit or related certifications are highly desirable

Education

  • BS or MS degree in Computer Science, or a related field; or equivalent experience

Eligibility

  • Must pass a criminal background check
  • Must hold a valid driver’s license
  • Must have reliable transportation
  • Must be authorized to work in the United States

Position  is based out of the San Jose, CA office
We do not sponsor or transfer visas
No agencies please

Submit your resume