Information Security and Compliance Analyst @ Brooksource | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Information Security and Compliance Analyst jobs in Louisville, KY
200+ applicants
company-logo

Brooksource · 1 day ago

Information Security and Compliance Analyst

positionLouisville, KY
timeContract
remoteRemote
seniorityMid Level
ftfMaximize your interview chances
EmploymentHuman Resources
check
Growth Opportunities

Insider Connection @Brooksource

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Ensure compliance with industry regulations, standards (e.g., FISMA, FedRAMP, ISO 27001, NIST), and internal policies.
Conduct regular audits, follow-ups, and risk assessments to identify and address compliance gaps.
Maintain and update documentation on security processes and policies.
Monitor and analyze activities in a Security Information and Event Management (SIEM) system.
Respond to security incidents, investigate breaches, and document findings.
Recommend and implement mitigation strategies for identified vulnerabilities.
Lead cross-departmental initiatives to align IT security practices with organizational goals.
Conduct training sessions to educate staff on compliance and security best practices.
Research emerging threats and security enhancements, recommending solutions to management.
Participate in the development of security tools and procedures to improve overall security posture.
Prepare and deliver reports for senior management on compliance status, findings, and recommendations.
Assist in maintaining the eGRC tool for continuous monitoring and compliance tracking.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Compliance ManagementCybersecurity OperationsSIEM toolsCISSPCISMCISACCSPPMPOSCPCySA+CompTIA Security+CASP+PenTest+GSECSSCPIT security frameworksNetwork securityMicrosoft Office SuiteDocumentation skills

Required

Ensure compliance with industry regulations, standards (e.g., FISMA, FedRAMP, ISO 27001, NIST), and internal policies.
Conduct regular audits, follow-ups, and risk assessments to identify and address compliance gaps.
Maintain and update documentation on security processes and policies.
Monitor and analyze activities in a Security Information and Event Management (SIEM) system.
Respond to security incidents, investigate breaches, and document findings.
Recommend and implement mitigation strategies for identified vulnerabilities.
Lead cross-departmental initiatives to align IT security practices with organizational goals.
Conduct training sessions to educate staff on compliance and security best practices.
Research emerging threats and security enhancements, recommending solutions to management.
Participate in the development of security tools and procedures to improve overall security posture.
Prepare and deliver reports for senior management on compliance status, findings, and recommendations.
Assist in maintaining the eGRC tool for continuous monitoring and compliance tracking.
Strong knowledge of IT security frameworks and regulations.
Hands-on experience with SIEM tools, network security, and audit processes.
Proficient in cybersecurity tools, Microsoft Office Suite, and compliance management systems.
Strong analytical, documentation, and communication skills.
Ability to work independently and lead projects to successful completion.

Preferred

Bachelor’s degree in computer science, Software Engineering, or a related field (equivalent professional experience may be considered for substitution for the required degree on an exception basis).
Candidates with one or more of the following certifications are a plus: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified Cloud Security Professional (CCSP), Project Management Professional (PMP), Offensive Security Certified Professional (OSCP), Cybersecurity Analyst (CySA+), CompTIA Security+, CASP+, or PenTest+, GIAC Security Essentials (GSEC), System Security Certified Practitioner (SSCP).
Familiarity with government information systems and classified environments is a plus.

Company

Brooksource

twittertwittertwitter
Glassdoor
4.0
company-logo
Brooksource is a single source for project and supplemental support through contract employment, contract-to-hire labor employment.
dateFounded in 2000
location
Indianapolis, Indiana, USA
people-size1001-5000 employees
web-link
http://www.brooksource.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Ashley Cigolotti
Director, Global Partnerships
linkedin
leader-logo
Matt Ayala
National Account Executive (Global Partnerships)
linkedin

Recent News

Technical.ly
This Week in Jobs: Click your heels and wish for one of these 24 open tech roles
2024-12-10
Technical.ly
This Week in Jobs: Fill your plate with these 26 tech career opportunities
2024-11-26
Technical.ly
This Week in Jobs: Travel far in your career with these 26 open tech roles
2024-11-19
Company data provided by crunchbase
logo

Orion

Your AI Copilot