Information Security Analyst III - Compliance

Information Security Analyst III - Compliance, CA, Full time-Direct HireCypress, CATechnical skills needed:5+ years’ experience in an Information Security Compliance role to include experience in assessing and recommending internal application and infrastructure controls requiredProfessional security management certification, such as a ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GISP), GIAC-Security Expert (GSE), or Certified Information Security Auditor (CISA) highly desirableKnowledge and experience with common Information Security management frameworks and best practices required, experience with the National Institute of Standards and Technology (NIST) frameworks and Center for Internet Security (CIS) Critical Security Controls preferredKnowledge and experience with security infrastructures (e.g. Firewalls, IDS/IPS, VPN, Web Content Filters, Proxies, DLP, SIEM, Log aggregation correlation technologies) requiredBachelor’s Degree or equivalent work experience in a related field required5+ years’ experience in an Information Security Compliance role to include experience in assessing and recommending internal application and infrastructure controls requiredMust be self-motivated and able to work independently, with minimal supervision and as part of a teamProfessional security management certification, such as a ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GISP), GIAC-Security Expert (GSE), or Certified Information Security Auditor (CISA) highly desirableKnowledge and experience with common Information Security management frameworks and best practices required, experience with the National Institute of Standards and Technology (NIST) frameworks and Center for Internet Security (CIS) Critical Security Controls preferredKnowledge and experience with security infrastructures (e.g. Firewalls, IDS/IPS, VPN, Web Content Filters, Proxies, DLP, SIEM, Log aggregation correlation technologies) requiredGeneral understanding of technical infrastructure (Active Directory, Applications, various Operating Systems, etc)