Senior Analyst, IT Security



Senior Analyst, IT Security



Employment Type:



per year

Job Description:

The Sr. IT Security Analyst is responsible for assessing information risk and facilitates remediation of identified vulnerabilities for IT security and IT risk across the enterprise.

Assesses information risk and facilitates remediation of identified vulnerabilities with the BathFitter network, systems and applications. Reports on findings and recommendations for corrective action. Performs vulnerability assessments as assigned utilizing IT security tools and methodologies. Performs assessments of the IT security/risk posture within the IT network, systems and software applications, in addition to assessments within the Vendor Management Program. Identifies opportunities to reduce risk and documents remediation options regarding acceptance or mitigation of risk scenarios. Facilitates and monitors performance of risk remediation tasks, changes related to risk mitigation andamp; reports on findings. Maintains oversight of IT and vendors regarding the security maintenance of their systems and applications. Provides weekly project status reports, including outstanding issues. The IT Security/Risk Analyst assists in all IT audits, IT risk assessments and regulatory compliance. Tasks and Responsabilities
  • Take responsibility for maintaining PCI-DSS compliance
  • Provide guidance and supervision for the IT security program in accordance with industry best practices (NIST, CIS, PCI-DSS, Mitre ATTandamp;CK)
  • Ensure that the various IT initiatives are carried out in accordance with our IT security program;
  • Manage external cyber security partners;
  • Monitor cyber security bulletins and implement patches;
  • Audit hosted and cloud-based infrastructures for security and issue recommendations;
  • Establish, write, maintain and communicate the company's IT security policies;
  • Act as a technical expert in the area of IT Security
  • Serve as project manager/lead within IT security projects
  • Monitor security Access
  • Conduct security assessments through vulnerability testing and risk analysis
  • Perform both internal and external security audits
  • Analyzing security breaches to identify the root cause
  • Continuously updating the company's incident response and disaster recovery plans.
  • Verifying the security of third-party vendors and collaborating with them to meet security requirements
  • Actively contribute to the development and evolution of the cyber security training and awareness program for employees;
  • Occasionally review and produce technical documentation;
  • Implement, maintain and update Industry 4.0 (IOT) security
  • Job Requirements
  • Bachelor's Degree, Information Systems, Computer Science, Information Security or related field or combination of education and experience
  • 7-10 years IT security or information security experience with a proven ability to engage with Senior Management and regulators
  • 4+ Years experience in administering IT security controls in an organization
  • 4+ years experience in conducting IT compliance assessments
  • Knowledge of technical infrastructure, networks, datebases and systems in relation to IT security and IT Risk
  • Certified Information Systems Security Professional (CISSP) or related certification
  • Prior experience performing security reviews and risk assessments preferred.
  • Demonstrated Skills
  • Technician experience in security administration supporting a large user environment
  • Solid understanding of Industry Standard Security Practices
  • Excellent oral and written communication skills, in French and English.
  • Excellent listening and interpersonal skills
  • Flexible and adaptive collaborative team player.
  • Strong analytical and problem-solving skills.
  • Ability to work well under pressure, to prioritize work and to be well organized.
  • Bath Fitter is an equal opportunity employer and is committed to diversity in its hiring and business practices. All qualified candidates are encouraged to apply. Please note that the Company requires all applicants for employment to submit truthful information and that if the Company learns that an applicant submitted untruthful or false information - even after an applicant's employment commences - the Company retains sole discretion to either rescind the applicant's offer of employment or terminate employment. Bath Fitter thanks all candidates for their interest; however, only those selected to continue in the process will be contacted.
    Company Info
    Bain Magique Franchising Inc

    Company Profile