Security Analyst

We are seeking a Security Analyst to join our growing information technology team. In this role, you will collaborate with technology teams, business leaders, consultants, and colleagues in our company to ensure the successful delivery and operations of secure technology. Based at our corporate headquarters in Scottsdale, AZ, you will play a pivotal role in technology risk reduction through maintaining compliance with our security program.

Essential Duties:

• Lead and manage PCI DSS compliance workstreams within corporate and customer environments.
• Collaborate with internal technology and business teams to achieve and maintain compliance with defined security standards.
• Operate and monitor security controls to ensure adherence to our security framework.
• Documents, communicates, and tracks security deviations in a risk focused view.
• Coordinate with internal and external teams on audit requests for financial audits, certifications, or regulatory compliance.
• Analyze data and processes to recommend people, process, or technology changes to reduce risk.
• Participate in incident response procedures, including analyzing, documentation, and improvement plans.
• Enhance Business Continuity and Disaster Recovery processes by authoring, reviewing, and performing disaster recovery exercises in collaboration with product owners.
• Other governance, risk, compliance, security, or technology related duties as required.
  
  

Education/Experience:

• Bachelor’s degree in computer science, information technology, business management, or equivalent experience preferred.
• Minimum four years of experience in information technology with a focus on security, risk, and compliance.
  
  

Certificates/Licenses:

The Following Certifications Are Highly Preferred But Not Required.

• PCI Professional (PCIP), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), or similar security and risk certifications.
  
  

Job Knowledge, Skill, and Ability Preferences

• Familiarity with Microsoft cloud offerings, desktop, and server operating systems.
• Familiarity with security best practices from NIST, CIS plus PCI regulations.
• Familiarity with practical application of security in an enterprise.
• Familiarity with scripting, preferably PowerShell.
• Analytical and holistic thinking to solve unique problems.
• Ethically and morally sound decision-making abilities.
• Strong communication and teamwork skills.
  
  

This job description is not an exclusive or exhaustive list of all job functions that an associate in this position may be asked to perform from time to time.