General information

Country
United States
City
Remote Location
Department
Security Office
Job ID
31529

Description & Requirements

The Sr Security Analyst will be joining the vulnerability management team which is growing and transforming into a service offering for the entire company and partnering with the rest of the Security organization to shape the future of cyber defenses at Infor. Primary responsibility will be to support Vulnerability Management Team at Infor within the ISO team.

A Day in The Life Typically Includes:

  • Research vulnerabilities in software, firmware, and devices, and modern exploits and exploitation techniques in the following areas: Microsoft platform, Open Systems platforms, Java, Adobe, Web Applications, Java web app virtualization platforms, Networking, Databases, and others.
  • Assess publicly and privately announced security vulnerabilities to determine the risk based on severity, threat likelihood, and impact
  • Design correction plans, mitigations, and full remediation actions
  • Understand and communicate attack chains to management and other stakeholders
  • Collaborate with infrastructure, application and area leads on security hot fixes or patch management validation
  • Identify and recommend appropriate measures to manage and remediate vulnerabilities and reduce potential impacts on information resources to a level acceptable to the senior management of the company
  • Support the cyber incident response team in specified vulnerability discovery and identification tasks during crisis management.

Required skills:

  • Operational experience with various Vulnerability Scanning Applications, vulnerability management, or related information security field
  • Knowledge of NIST and ISO 27001 frameworks, SOC1 and 2 Audits
  • Federal Risk and Authorization Management Program (FedRAMP) authorization or ability to obtain, experience with achieving and maintaining ATO and understanding of FedRAMP architecture and security controls
  • Experience with writing Plans of Action and Milestones (POA&M)
  • Demonstrate knowledge of Microsoft platform, Open System platform, Virtualization platforms and Databases, and patch management
  • Experience developing and improving KPIs, metrics, and trending for vulnerability management functions
  • Automation experience through programming (Java, Python) and knowledge of Cloud concepts (AWS, Azure)



Remote (Alpharetta, Georgia; St Paul, MN or Dallas TX)

About Infor

Infor delivers end-to-end ERP and strategic edge applications that are integrated and delivered in a multi-tenant cloud. We believe that customers need industry-specific solutions and that one size does not fit all.

We are proud to serve more than 68,000 companies worldwide. Infor is a standalone subsidiary of Koch Industries, Inc., which has annual revenues of over $110 billion.

For more information visit www.infor.com


Infor Values:

Our Guiding Principles set the standard for how we work with one another. They define who we are as an organization and guide everything we do. By applying the same shared values that unleash prosperity in free societies—such as value creation, integrity, responsibility, free speech, and toleration—we encourage one another to take initiative and to challenge the status quo.

 

We have a relentless commitment to a culture based on a business philosophy called Principle Based Management™ (PBM™). Informed by the principles that allow a free and open society to flourish, PBM™ prepares individuals to innovate, improve, and transform while fostering a healthy, growing organization that creates long-term value for its clients and supporters and fulfillment for its employees. 


Equal Opportunity Employer, including disability and protected veteran status. This employer uses E-Verify.  Please visit the following website for additional information: www.kochcareers.com/doc/Everify.pdf