Information Security Analyst

Location: Hybrid, with 2 days/week remote; Office location in Canonsburg, PA 15317

Job Type: Full-time

Work Authorization: U.S. Citizen or Green Card

The A.C. Coy Company is currently seeking candidates for an Information Security Analyst role. This individual will serve as a main contact for compliance and security initiatives within the company. Our ideal candidate will have 5+ years of experience working in information security and specific experience in GRC and cybersecurity. CISSP is strongly preferred. Occasional travel to other office locations is required, but very rarely overnight.

Our client is offering an excellent salary and benefits package and strong career growth opportunities.

• Lead and manage security initiatives, compliance enforcement, and incident response in accordance with corporate policies and standards
• Maintain and improve our ISMP /Process Documents, create and update process documentation, controls, and SOPs
• Maintain security policy and procedure documentation, such as ISMP, according to changes in the business and security framework.
• Develop and design necessary systems to maintain and improve the organization’s security posture
• Conduct log reviews and investigations and monitor/report on security systems such as the SIEM, IPS, and VM
• Manage third-party risk management and security awareness program
• Provide guidance on development and technology security strategy for the IT team
• Mentor and grow our high-performing security team
• Works closely with Incident Response Team to gather requirements and support their needs
• Help maintain Security Operations Center (SOC) to improve incident response time with Network Technician(s)
• Support in achieving organizational Objectives and Key Results (OKRs)
• Track, analyze, and report threats, risks, vulnerabilities, and incident data as part of our data-driven security operation
• Track and improve corporate security Key Performance Indicators (KPIs)
• Brief associates and executives at annual reviews, lunch & learns, and training events on security awareness
• Develop and sustain long-standing relationships with 3rd party vendors
• Assist with RFP and other client requests for security and compliance confirmation documentation
• Assist our stakeholders with aligning standard operating procedures, controls, monitoring, and reporting

Bachelor's degree in Computer Science, Information Systems, Information Security or a related field

5+ years experience in the working in information security and technology 

Willingness to certify in Security+ and Network+ within first year of role placement is required

Preferred

CISSP certification

Some experience working in networking and server infrastructure

Experience in the commercial print industry preferred

Experience with C# development 

Experience with SQL