Fiserv Information Security Analyst, Staff in Lake Mary, Florida
Information Security Analyst
If you are ready for a challenge within security while working for an award winning team, look no further. Fiserv takes security seriously and is looking for a top notch Information Security Analyst for this dynamic role.
Why work for Fiserv?
We partner with all our associates and help them map their careers. We offer advancement opportunities for talented employees that work hard and deliver results.
This role provides technical services for the support of integrated security systems and solutions. The Information Security Analyst is responsible for providing support for the Security functions, including the design and implementation of an overall Fiserv Card Services Security Program. Additionally, this role will be providing knowledge and assistance in the area of Information Security.
Under general supervision:
•Leads Application Security (AppSec) process that will ensure the security posture of a line of products
•Provides technical services for the support of integrated security systems and solutions.
•Participates with internal clients in the strategic design process to translate security and business requirements into technical designs.
•Uses security products and systems to detect security weaknesses
•Assists in the evaluation of third party vendor software and systems, and vulnerability assessments
•Assists in security standards and procedures development
•Mentors other team members across a variety of security knowledge domainsSpecific Job functions will include, but not be limited to:
•Manage the application Penetration Testing (PenTest) process including scheduling team performing PenTests, risk ranking vulnerabilities, advising remediation, and leading team discussions
•Advise larger development and quality assurance (QA) team on application security, technical design options and OWASP top 10 issues
•Training and assisting in threat modeling
•Perform risk assessments and risk management functions
•Act as a security consultant on projects including e-commerce, end-user systems, and remote access following corporate security policy and standards
•Manage security systems to resolve security related issues and ensure effective and appropriate security measures are in place
•Perform regular vulnerability assessments and implement solutions to mitigate risks
•Maintain programs and products required to control and monitor user activities
•Respond to security related incidents as necessary and required including implementation of processes to recover from and prevent security incidents
•Participate in security audits.
•Provide data analysis to support and develop internal tools and systems
Education: Bachelor's degree in Computer Science or high school diploma with relevant experience
CISSP cert preferred
Job Related Experience:
•Three years’ relevant experience
•Hands on technical experience with application security including OWASP top 10
•Technically strong within security management
•Must be able to make decisions and solve problems that are general in nature and for which there are no precedents
Functional Area Skills/Knowledge:
•Industry experience or other regulated environment experience preferred
•Familiarity with ISO 27001, PCI, FFIEC
•In depth understanding of security control structures and elements for a layered security environment
•Advanced level of technical skills required to complete assignments
•Comprehensive understanding of security concepts and knowledge domains required
•Strong written and oral communications skills required
Fiserv is an Equal Opportunity Employer/Disability/Vet. Visit http://www.careers.fiserv.com/eeo for more information.