Randstad IT Security Analyst - Awareness and Training-St. Louis; Franklin Lakes; Bloomington, MO, NJ, MN, in Saint Louis, Missouri
IT Security Analyst - Awareness and Training-St. Louis; Franklin Lakes; Bloomington, MO, NJ, MN,
Saint Louis, MO
Wednesday, October 12, 2016
IT SECURITY ANALYST-AWARENESS AND TRAINING
This IT Security Analyst (Awareness and Trainng) is overall responsible for our security awareness and training program. Ultimately this person s job is to reduce risk to our organization by ensuring all employees, staff and contractors know, understand and follow our security requirements and behave in a secure manner.
The position is in the Strategy, Planning, and Execution (SPE) team, in the Information Risk Management (IRM) department. IRM is responsible for managing the Information Security risk for the organization. The SPE team leads the creation of the multi-year strategy, IRM roadmaps, and manages the execution of the plans. SPE also defines the corporate security standards, performs risk assessments, and measures organizational security performance.
Ensure that our security awareness program meets all industry regulations, standards, and compliance requirements.
Ensure that our security awareness program communicates our security policies and requirements so that people know, understand and can follow them.
Identify the top human risks to our organization and the behaviors we need to change to mitigate those risks. Develop and maintain a security awareness program that effectively changes these behaviors so our employees act in a secure manner, reducing the most risk to our organization.
Create a positive program that engages employees, to include focusing on changing behaviors both at home and at work. Ultimately we want our employees to demonstrate the same secure behaviors regardless of where they are or the devices they are using.
Structure and maintain this program to be long term, so ultimately we are not changing just behaviors but culture.
Create a metrics framework that can effectively measure these requirements.
Provides consultative advice to information security customers that enables them to make informed risk management decisions.
Ensures that user community understands and adheres to necessary procedures to maintain security.
Active participation in strategic initiatives in accordance to the IRM roadmap.
Ability to form complex communications / messages in a simple, clear and concise manner to the various communities within our organization. This can include different cultures, nationalities, international locations and languages.
Project management experience, the ability to plan, manage and maintain a complex, organization wide program over the longer term.
Display practical knowledge of different message distribution techniques to ensure end user communities understand and continually apply the required behavioral change necessary to reduce the human factors risk.
Ability to communicate with and coordinate the activities of others.
Understanding of the concepts of information risks and the different elements that make up risk. In addition have at a minimum a basic understanding of the different concepts of information security.
At least 1-3 years of IT experience with a Bachelor s Degree in computer related field or equivalent
1 - 2 years of Security Awareness / Training or a similar background in the Security Education areas, preferably in a Fortune 100 or other large enterprise expertise
PC skills including knowledge of Microsoft Office
Excellent organizational skills and ability to communicate with internal/external entities and executives a must
Effective leadership skills, demonstrated ability to coordinate people and teams to project/activity completion and the ability to work in a team environment, sharing workloads and responsibilities
Customer service-oriented; Ability to work in a flexible environment where requirements and procedures continuously evolve
Certification in information security (CISSP, CISM, GIAC, or equivalent) preferred