Job Description
Security Services Analyst Role Overview The Security Services Analyst is crucial in ensuring the confidentiality, integrity, and availability of information by delivering top-notch security services. The analyst will collaborate with various stakeholders to develop, implement, and maintain robust security practices and respond effectively to security incidents. Key Responsibilities Operational Best Practices & Standards: Develop and maintain best practices and standards for security service processes. Regularly monitor, audit, and enhance the effectiveness of security processes. Governance & Policy Development: Contribute to the creation and documentation of governance standards, security policies, and procedures. Technical Assessments & Recommendations: Conduct technical assessments and recommend standards and baselines. Coordinate and provide technical input for security services, including: Vulnerability Management Security Information and Event Management (SIEM) Penetration Testing Security Training and Communication Incident and Emergency Response Threat and Risk Management Business Continuity & Disaster Recovery: Plan, document, and schedule annual business continuity and disaster recovery tests. Security Assessments for New Technologies & Vendors: Provide insights for security assessments of new technologies and third-party vendors. Review project designs and change requests to ensure security is a fundamental design principle. Risk Assessments & Audits: Perform risk assessments and audits. Document and communicate risk notifications for risks identified outside of GITT responsibility, collaborating with business units to determine appropriate actions. Support & Collaboration: Assist the Security Services Lead and Technology & Security Services Manager with information risk and security issues. Provide coverage for team members in their absence. Work Relationships Internal Collaboration: Technology & Security Services Team IT Process & Quality Manager Service Delivery Team Business Application Team Project Management Office IT Security Managers within operating companies External Collaboration: Managed Service Providers SIEM/SOC Providers Third-party Suppliers and Vendors Experience & Competencies Strong understanding of IT security risks and security service processes. Familiarity with the NIST framework. Proven ability to deliver services under high-pressure conditions. Excellent communication skills, with the ability to convey information clearly to both business and IT users. Proficiency in reporting, documentation, and presentation. Ability to work independently and as part of a team. Strong interpersonal skills. Effective prioritization and reporting on service demand. Qualifications & Certifications Bachelor's degree in IT, Computer Science, Engineering, Business, or a related field. Relevant information security certifications (e.g., CISSP, CISM, CISA, CRISC, CEH). ITIL Certification. PRINCE2 Certification. This role requires a proactive approach, technical expertise, and strong collaborative skills to maintain and enhance the security posture of my client