Security Analyst - - 16848

Allmän information

Land

Filippinerna

Stad

Remote Location

Jobb-ID

44175

Avdelning

Information Technology

Arbetslivserfarenhet

MID_SENIOR_LEVEL

Employment Status

FULL_TIME

Workplace Type

Hybrid

Beskrivning och krav

The Security Analyst will be part of the Vulnerability Management team, which is currently expanding and transitioning into a service offering for the entire Infor company. This role will collaborate closely with other segments of the Security organization to drive the evolution of cyber defenses within the company, challenge the status quo, leverage a diverse IT background, and employ a comprehensive knowledge to identify, assess, prioritize, and communicate vulnerabilities and threats across the organization.

What You Will Need?

Required skills:

Operational experience in various vulnerability scanning applications (e.g., Qualys or similar solutions), vulnerability management, or related information security fields.
Knowledgeable in NIST and ISO 27001 frameworks.
Familiarity with industry-standard security best practices and vulnerability management processes, including compliance reporting.
Knowledge of general cloud concepts, particularly in AWS environment and system security controls on multiple operating systems.
Knowledge of operating system hardening and CIS benchmark
Knowledge of Microsoft platform, Open System platform, Virtualization platforms and Databases, and patch management
Knowledge of networking concepts and devices (Firewalls, Routers, Switches, and Load Balancers) and good understanding of network and web-related protocols
Strong communication skills
Availability to work in the Philippines in GMT or GMT+1 time zones.

What Will Put You Ahead?

Preferred Qualifications:

Experience in automation using programming languages such as Java and Python.
Knowledge of Secure Software Development Life Cycle (SSDLC)
Demonstrates principled entrepreneurship, practicing mutual benefit, and possessing the ability to attract, motivate, and empower people.
Proven ability to challenge the status quo
Values collaboration as a key aspect of success, with the capability to interact effectively with employees at all levels, both personally and professionally. Displays personal and professional self-awareness, recognizing strengths and areas for development, and actively seeks opportunities for growth.
Exhibits a commitment to lifelong learning and self-actualization, continuously seeking out new knowledge and skills to stay ahead in the field of cybersecurity.
Demonstrates flexibility and organizational skills, adapting to changing environments and effectively managing multiple tasks and responsibilities.
Possesses a passion for advanced cybersecurity

A Day in The Life Typically Includes:

Research and report vulnerabilities using various tools in software, firmware, and devices, and modern exploits and exploitation techniques in the following areas: Microsoft platform, Open Systems platforms, Java, Adobe, Web Application, Java web app virtualization platforms, Networking, Databases, and others.
Assess publicly and privately announced security vulnerabilities to determine the risk based on severity, threat likelihood, and impact.
Produce data-driven, meaningful dashboards and reporting that show Security Risk
Constantly transform yourself and the organization by designing correction plans and security findings into avoidance programs.
Create mutual benefit by collaborating with Infrastructure, Application and Development leads on security findings and data-storytelling using your data analytics skills.
Read through system configuration reports and provide systems security hardening practices
Automate manual activities and processes with automation where possible to avoid repeating human intervention and create efficiency and convenience.
Respond on Cyber Threat by analyzing the source, scope, and the impact to protect systems and data.
Suggest improvements and recommendations based on the analyses you do, using various tools and techniques and advise on training, awareness, best practices and policies/procedures to ensure an affective security program.
Identify and recommend appropriate measures to manage and remediate vulnerabilities and reduce potential impacts on information resources to a level acceptable to the senior management of the company.

Om Infor

Infor är en global ledare inom molnbaserade programvaruprodukter för företag på branschspecifika marknader. Infor bygger kompletta branschsviter i molnet och distribuerar effektivt teknik som sätter användarupplevelsen främst, utnyttjar datavetenskap och enkelt integreras i befintliga system. Över 60 000 organisationer världen över förlitar sig på Infor för att övervinna marknadsstörningar och uppnå digital omvandling i hela verksamheten.nbsp;

För mer information besök www.infor.com

Våra värderingar

På Infor strävar vi efter en miljö som bygger på en affärsfilosofi som Principle Based Management™ (PBM™) och åtta vägledande principer: integritet, förvaltarskap och efterlevnad, transformation, principiellt entreprenörskap, kunskap, ödmjukhet, respekt, självförverkligande. Ökad mångfald är viktigt för att återspegla våra marknader, kunder, partners och samhällen vi tjänar i nu och i framtiden.

Vi har ett obevekligt engagemang för en kultur baserad på PBM. Informerad av de principer som tillåter ett fritt och öppet samhälle att blomstra, förbereder PBM™ individer att förnya, förbättra och omvandla samtidigt som de främjar en hälsosam, växande organisation som skapar långsiktigt värde för sina kunder och supportrar och uppfyllelse för sina anställda.

Infor är en arbetsgivare för lika möjligheter. Vi är engagerade i att skapa en mångsidig och inkluderande arbetsmiljö. Infor diskriminerar inte kandidater eller anställda på grund av kön, ras, könsidentitet, funktionshinder, ålder, sexuell läggning, religion, nationellt ursprung, veteranstatus eller någon annan skyddad status enligt lagen.

På Infor värdesätter vi din integritet, därför har vi skapat en policy som du kan här.