Information Security Analyst (SecOps) Job at INSPYR Solutions (New York)

Expert Security Analyst – Incident Coordinator

As an Expert Security Analyst – Incident Coordinator, you will take a leadership...

Location

Netherlands , Veldhoven

Salary:

Not provided

ASML

Expiration Date

Until further notice

Requirements

Bachelor’s or Master’s in Computer Science, Cybersecurity, or related field
7+ years experience in advanced cybersecurity roles
Experience working with stakeholders in a complex organization
Proven record of influencing upper management towards security best practices
Expertise in Security Monitoring, Log Analysis, and Threat Hunting
Deep knowledge of a wide range of domains such as Endpoint, Network, OT, Information and Cloud Security
Certifications – CISSP, GCIH, GCFA, CISM preferred
A Certificate of Good Conduct “Verklaring Omtrent het Gedrag (VOG)” is required
Possess a valid work permit for the Netherlands (preferred)
Legally authorized to access controlled technology as defined in the United States Export Administration Regulations

Job Responsibility

Security Monitoring – Actively monitor security alerts for malicious activity or anomalies, ensuring swift response
Incident Handling – Lead investigations into high-profile, complex, or advanced persistent threats (APTs)
Threat Hunting – Proactively search for hidden threats and improve detection capabilities
Incident Analysis – Correlate data across multiple sources to detect sophisticated attack patterns
Detection & Response Optimization – Develop advanced detection techniques and security automation strategies
Technology Leadership – Act as an SME for SecOps tools and threat domains
Mentorship & Training – Provide guidance and mentorship to analysts at all levels

Fulltime

Senior GRC Analyst

We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Anal...

Location

United States , Chicago

Salary:

90000.00 - 130000.00 USD / Year

Blume Global

Expiration Date

Until further notice

Requirements

5+ years of hands-on experience in GRC, preferably with a focus on acquisition integration
Strong knowledge of regulatory compliance requirements, risk management frameworks, including ISO 27001, NIST
Experience with SOC1/2, GDPR, and privacy frameworks
Proficiency in information security tools, techniques, and controls
Experience with metrics and KPIs to measure and track information security risk
Ability to develop policies, standards, and guidelines
ISO27001:2022 Lead Implementer and lead auditor certifications are a must
CISA, CISM, CISSP, or CRISC certifications are desirable
Experience with GRC tools, such as Vanta, Archer, ServiceNow Risk modules is highly desirable
Exposure to CMMC/FedRAMP is highly desirable

Job Responsibility

Acquisition Assessment: Collaborate with cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities
Integration Planning: Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy
Risk Management: Evaluate and mitigate risks associated with integration processes, working closely with risk management teams
Policy and Procedure Harmonization: Bridge gaps between existing practices and those of acquired entities, harmonizing policies, procedures, and controls
Communication and Stakeholder Management: Effectively communicate integration plans and progress, fostering strong relationships with key stakeholders
Reporting and Documentation: Maintain accurate documentation of integration activities and generate insightful reports for senior management
Continuous Improvement: Identify areas for improvement and drive enhancements to the integration process
Customer Security Questionnaire Support: Collaborate with various teams to ensure accurate and comprehensive responses to customer security questionnaires

Fulltime

Senior GRC Analyst

We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Anal...

Location

United States , Chapel Hill

Salary:

Not provided

Blume Global

Expiration Date

Until further notice

Requirements

5+ years of hands-on experience in GRC, preferably with a focus on acquisition integration
Strong knowledge of regulatory compliance requirements, risk management frameworks, including ISO 27001, NIST
Experience with SOC1/2, GDPR, and privacy frameworks
Proficiency in information security tools, techniques, and controls
Experience with metrics and KPIs to measure and track information security risk
Ability to develop policies, standards, and guidelines
ISO27001:2022 Lead Implementer, and lead auditor certifications are a must
CISA, CISM, CISSP, or CRISC certifications are desirable
Experience with GRC tools, such as Vanta, Archer, ServiceNow Risk modules is highly desirable
Exposure to CMMC/FedRAMP is highly desirable

Job Responsibility

Acquisition Assessment: Collaborate with cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities
Integration Planning: Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy
Risk Management: Evaluate and mitigate risks associated with integration processes, working closely with risk management teams
Policy and Procedure Harmonization: Bridge gaps between existing practices and those of acquired entities, harmonizing policies, procedures, and controls
Communication and Stakeholder Management: Effectively communicate integration plans and progress, fostering strong relationships with key stakeholders
Reporting and Documentation: Maintain accurate documentation of integration activities and generate insightful reports for senior management
Continuous Improvement: Identify areas for improvement and drive enhancements to the integration process
Customer Security Questionnaire Support: Collaborate with various teams to ensure accurate and comprehensive responses to customer security questionnaires

Senior GRC Analyst

We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Anal...

Location

United States , Chapel Hill

Salary:

Not provided

Blume Global

Expiration Date

Until further notice

Requirements

5+ years of hands-on experience in GRC, preferably with a focus on acquisition integration
Strong knowledge of regulatory compliance requirements, risk management frameworks, including ISO 27001, NIST
Experience with SOC1/2, GDPR, and privacy frameworks
Proficiency in information security tools, techniques, and controls
Experience with metrics and KPIs to measure and track information security risk
Ability to develop policies, standards, and guidelines
ISO27001:2022 Lead Implementer, and lead auditor certifications are a must
CISA, CISM, CISSP, or CRISC certifications are desirable
Experience with GRC tools, such as Vanta, Archer, ServiceNow Risk modules is highly desirable
Exposure to CMMC/FedRAMP is highly desirable

Job Responsibility

Acquisition Assessment: Collaborate with cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities
Integration Planning: Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy
Risk Management: Evaluate and mitigate risks associated with integration processes, working closely with risk management teams
Policy and Procedure Harmonization: Bridge gaps between existing practices and those of acquired entities, harmonizing policies, procedures, and controls
Communication and Stakeholder Management: Effectively communicate integration plans and progress, fostering strong relationships with key stakeholders
Reporting and Documentation: Maintain accurate documentation of integration activities and generate insightful reports for senior management
Continuous Improvement: Identify areas for improvement and drive enhancements to the integration process
Customer Security Questionnaire Support: Collaborate with various teams to ensure accurate and comprehensive responses to customer security questionnaires

Senior GRC Analyst

We are seeking an experienced Senior Governance, Risk, and Compliance (GRC) Anal...

Location

United States , Chicago

Salary:

90000.00 - 130000.00 USD / Year

Blume Global

Expiration Date

Until further notice

Requirements

5+ years of hands-on experience in GRC, preferably with a focus on acquisition integration
Strong knowledge of regulatory compliance requirements, risk management frameworks, including ISO 27001, NIST
Experience with SOC1/2, GDPR, and privacy frameworks
Proficiency in information security tools, techniques, and controls
Experience with metrics and KPIs to measure and track information security risk
Ability to develop policies, standards, and guidelines
ISO27001:2022 Lead Implementer and lead auditor certifications are a must
CISA, CISM, CISSP, or CRISC certifications are desirable
Experience with GRC tools, such as Vanta, Archer, ServiceNow Risk modules is highly desirable
Exposure to CMMC/FedRAMP is highly desirable

Job Responsibility

Acquisition Assessment: Collaborate with cross-functional teams to assess the GRC landscape of newly acquired companies, identifying gaps and alignment opportunities
Integration Planning: Develop comprehensive integration plans tailored to each acquisition, ensuring alignment with the company's overarching GRC strategy
Risk Management: Evaluate and mitigate risks associated with integration processes, working closely with risk management teams
Policy and Procedure Harmonization: Bridge gaps between existing practices and those of acquired entities, harmonizing policies, procedures, and controls
Communication and Stakeholder Management: Effectively communicate integration plans and progress, fostering strong relationships with key stakeholders
Reporting and Documentation: Maintain accurate documentation of integration activities and generate insightful reports for senior management
Continuous Improvement: Identify areas for improvement and drive enhancements to the integration process
Customer Security Questionnaire Support: Collaborate with various teams to ensure accurate and comprehensive responses to customer security questionnaires

Fulltime

Risk Analyst

The Risk Analyst role at NTT DATA involves assessing and managing risks to ensur...

Location

India , Hyderabad

Salary:

Not provided

NTT DATA

Expiration Date

Until further notice

Requirements

3 - 6 years of experience
Experience in Cyber Governance, Risk & Compliance (GRC) and Security Operations (SecOps) Management
Deep understanding of GRC frameworks and SecOps activities
Exposure to working in a Managed Services environment
Solid understanding and experience of Cyber Security controls in terms of people, process and technology
Proven experience with Cyber control metrics management
Exceptional communication and written skills
Technical and non-technical stake holder engagement
Understanding of Cyber governance, Risk management, compliance frameworks such as NIST, ISO 27001, ISO 27035, SOC2
Strong and demonstrated experience in Information Security, with a focus on Cyber GRC and SecOps

Job Responsibility

Assessing and managing risks to ensure the security, integrity, and resilience of the organization's operations and services
Identifying potential threats, analyzing vulnerabilities, and providing recommendations to mitigate risks
Proactive risk assessment and collaboration with cross-functional teams
Audit Management: Against security standards such as ISO 27001, SOC2 Type II and Client contract obligations
BCP/DR testing
Client Cyber Risk management
Contribution to Cyber security awareness training
Metrics Management: Assist stakeholders with security metrics reporting
Security Incident Response
Supply Chain Risk and Audit management

Fulltime

SecOps Analyst L1

To support our continued success and deliver a Fanatical Experience™ to our cust...

Location

India , Gurgaon

Salary:

Not provided

Rackspace

Expiration Date

Until further notice

Requirements

Existing experience as a Security Operations Analyst/Engineer or equivalent
Experience of working in large scale, public cloud environments and with using cloud native security monitoring tools
Experience of analysing malware and email headers
Skills in network security, intrusion detection and prevention systems, operating systems, risk identification and analysis, threat identification and analysis and log analysis
Experience of security controls
Knowledge of security standards (good practice) such as NIST, ISO27001, CIS, OWASP and Cloud Controls Matrix (CCM)
Knowledge of scripting and coding with languages such as Terraform, python, javascript, golang, bash and/or powershell
Knowledge of DevOps practices such as CI/CD, Azure DevOps, CircleCI, GitHub Actions, Ansible and/or Jenkins
Computer science, engineering, or information technology related degree (although not a strict requirement)
Holds one, or more, of the following certificates (or equivalent): CISSP, AZ500, SC-200, CPIA, CRIA, CCNIA, SSCP, CCSP, GCIH, GSOC

Job Responsibility

Ensure the Customer’s operational and production environment remains secure at all the times and any threats are raised and addressed in a timely manner
Analysis, handling, escalation of alerts from cloud-native SIEM (Security Information and Event Management) platforms
Carry out preliminary investigation on the event and act as per KB
Identification of false positives
Following SLA (Service Level Agreement) notification process based on alert severity
Creating tickets on the Customer ITSM ticketing system
Update runbooks, playbooks and knowledgebase documents
Sharing SLA details for weekly and monthly reports
Provide the data or details for use case creation, detection engineering or enhancements
Provide the data or details for the tuning of threat detections, log sources, dashboards, analytics rules and/or automations

Fulltime