Website SimplePart LLC
SimplePart’s technology group is looking for an experienced Analyst in the area of Information Security and Compliance. This position requires a detail-oriented balance of perfection with practicality – creating a sound, sustainable security policy and audit practice within an rapidly evolving global business. You will collaborate with technical teams to create, design, test and enforce security policies, plans, controls and procedures to safeguard the integrity of and access to enterprise systems, networks, servers, devices, applications and data. You will be supported by internal technical teams who will handle technical implementation – this is not a hands-on technical role.
Develop, Maintain and Promote our Security Program
Collaborate with technical and business teams to develop and maintain an ongoing, sustainable security program which balances protection with the needs of the business.
Create and manage policies, plans and procedures.
Review customer contracts, RFPs and requirements.
Manage AD hierarchy, rights and groups.
Develop and conduct company-wide awareness and education programs for cyber security, systems security standards and our security-related policies and procedures.
Monitor industry advisories, alerts and developing threats and ensure they are acted upon in an appropriate and timely manner.
Create and manage controls for how PII, PCI and other sensitive information is classified, used, secured, managed and stored..
Internal Testing, Change Review and External Audit Support
Ensure successful annual renewals of our PCI certification.
Monitor security policies, controls and procedures to ensure they are followed.
Perform or direct periodic security audits.
Perform and deliver risk and security assessments.
Work with external auditors to provide support as needed.
Security and Penetration testing coordination.
Coordinate, execute and document redundancy, security, system and data recovery testing exercises.
Maintain information security, risk management, and business continuity success metrics.
Capture and document details of enterprise changes.
Hunter, self-starter, detail oriented, high energy, passionate, healthy sense of urgency.
High degree of initiative, dependable and able to work with little supervision while being resilient to change.
Excellent written and verbal communication skills.
One or more recognised risk or security certifications (e.g. CISA, GIAC, CISM, CISSP, CRISC, CEH, CompTIA Security+, ISO 27001 Lead Auditor).
Experience with common security and risk frameworks as well as relevant legal and regulatory requirements (e.g. NIST, CIS, PCI, NIST, SANS, HITRUST, ISO/IEC 27001, ITIL, CoBIT).
A broad understanding of technology security best practices, including current security issues and trends.
2+ years’ prior experience in risk management, security analysis, system administration, information security, or similar audit or business experience.
Bachelors (BS) degree in Computer Science, business administration or a technology-related field.
Knowledge of Microsoft SQL database systems, Cisco switches, PFSense firewalls, SNORT, Microsoft IIS
We take our culture very seriously. To apply, please include a cover letter that gives us an idea of your personality, who you are and what you’re all about.
This is a fun, fast-paced, close-knit environment with plenty of room to grow and be creative. We are an established, solidly profitable company with a start-up working environment and a brilliant team. We offer full-time W2 positions with company-paid health/dental/vision/life benefits, FSA, matching 401(k), unlimited paid vacation, dog-friendly office, relaxed dress code, eclectic company culture, and a great office location in Downtown Atlanta.
We are a nerdy and data-driven group, using design hand-in-hand with science to stand out in a dynamic market. Our portfolio covers most major US car brands, as well as thousands of individual dealers, and serves a worldwide user base of nearly 5,000,000 monthly shoppers.
Candidates must be authorized to work in the U.S. without sponsorship. No
To apply for this job email your details to firstname.lastname@example.org