Information Security Analyst

Job Description

Roles Responsibilities:

Internal Security Reviews Regular travel (@ ~30-35% annually) to support the Information Security Review program. Leverage industry and technical expertise to assist management to address more effectively risks associated with their business. Identify key risks and controls, controls optimization, including the configuration of controls around security, and business processes across a wide-range of business environments. Ensure timely completion of tasks per project phase. Apply understanding of the Milliman Information Security Policy to local business environment. Prepare audit reports on findings and recommendations to senior management. Identify opportunities for companies to effectively mitigate risk and improve business performance. Identify and escalate project risks to management. 2. Support Security Contract Terms Tracking Review legal agreements to ensure consistency across organization. Track contracts to ensure internal service level agreements are met. Task shall include collaboration with internal Legal and Information Security Teams. Qualifications 4-6 years of experience in a range of roles including: information technology, information security, or IT audit roles. Appropriate education such as a Bachelor s degree in Computer Science or Cyber Security. CISSP, CISA, CRISC or equivalent certification desired. Information security experience with ISO 270012, NIST 800-53, and other industry regulatory controls (HIPAA). Cloud security control experience a plus. Ability to interpret information security data and processes to identify potential compliance issues. Strong technical knowledge of information systems and their security areas such as networking, operating systems and identity access management. Experience with secure software development lifecycle. Demonstrated hands-on technical experience in a variety of Enterprise IT environments, working with a variety of security tools and technologies a plus. Technical skills proficiency in the following areas a plus: o Security information event management, o Network communication using TCPIP protocols, o Basic system administration, o Basic understanding of malware (malware communication, installation, malware types), o Intermediate knowledge of computer network defense operations (proxy, firewall, IDSIPS, routerswitch, open source information collection). Excellent verbal and written communication skills including the ability to prepare documentation and ability to clearly and effectively communicate Information Security matters to executives, auditors, and end users. Ability to work effectively and manage priorities as assigned independently. Proficiency in Excel, PowerPoint, OneNote and other productivity tools. Excellent project management skills including the ability to prepare, prioritize, and complete work plans. Decision-making and problem-solving skills including the ability to clearly define and resolve issues. Ability to work within a globally distributed organization and understanding of international information security regulations. Willingness to travel. Familiarity with contracts. Experience with insurance, finance, or professional services industry. This position will be based out of the Milliman office in Gurugram. Applicants must be willing to work onsite in the Milliman office.

Qualifications Skills

Behaviors

:

Motivations

:

Education

Experience

Licenses Certifications

You are using an unsupported browser. To use this site, please use a supported browser.

Keyskills :
networking itaudit workeffectively networkdefense eventmanagement servicelevel computerscience iso27001 cloudsecurity problemsolving opensource securitytools microsoftaccess siem auditreports customerrelations securitypolicy informationse