Associate Information Security Analyst - Full-time

We have a full-time opening for a Associate Information Security Analyst.

Must be able to work various shifts per week.

• Must have a high school diploma or equivalent.

PURPOSE:

To provide extraordinary, personalized guest experiences that build genuine relationships through loyalty to our guests, each other and our community. All actions are based on the principles of trust, integrity, mutual respect and teamwork.

The associate in this position will be a member of the Technology Services Team and will report to the Technology Services Director. The AISA will recommend and implement security solutions, advise on systems and application-level security configurations, and will investigate/mitigate technology security risks and incidents as they occur. The AISA also performs security monitoring, data/log analysis, content filtering, and forensic analysis to detect security incidents. The AISA will develop, implement, maintain, and audit organization-wide information security policies and procedures and will ensure the organization maintains PCI-DSS certification through completion of annual self-assessments.

Principal Accountabilities

• Be Honest and Honorable
• Ensure Safety, Security, and Privacy
• Surpass Every Guest’s Expectations
• Be Personally Responsible for the Highest Standards
• Find a Better Way Everyday
• Be Proud to Be a Team Member
• Be Financially Responsible

Essential Job Results:

May include, but not limited to:

• Manages/administers the organization’s information security infrastructure
• Defines, maintains, and regularly audits information security policies, processes, procedures and standards
• Identifies potential threats and risks and makes recommendations to mitigate these issues
• Analyzes and assesses vulnerabilities in the organization’s computing resources to demonstrate security control effectiveness
• Maintains and tests the organization’s security incident response plan
• Completes PCI-DSS annual self-assessments to ensure corporate security policies are in line with industry standards/requirements
• Develops and maintains information security awareness training programs
• Reports on information security metrics to demonstrate control effectiveness
• Manages and closes all assigned Service Desk tickets, to ensure timely response and resolution
• Keeps up to date on current technology service and product trends, develop and maintain knowledge of legacy, current, and new PC hardware and software technology
• Maintains a high level of interpersonal skills to handle sensitive and confidential situations, demonstrated poise, tact and diplomacy, the ability to work well with all levels of internal management and staff, as well as communicating in different capacities (written, electronic and verbal)
• Ability to work in a fast-paced ever changing environment with demonstrated ability to juggle and prioritize multiple tasks, and willingness to stretch skill set and talent level
• Participates in the TS on-call rotation for urgent technical support outside business hours
• Performs other related duties as assigned

Essential Qualifications

• Prior experience supporting corporate technology infrastructure
• Prior technical project and vendor management
• Experience with Microsoft client/server environment, Windows Server operating systems, Microsoft Active Directory
• Experience with Personal Computer maintenance, Microsoft PC operating systems, Microsoft applications, and antivirus software
• Understanding of TCP/IP, LAN, WAN and networking best practices
• Excellent organization and interpersonal skills
• Excellent oral and written communication skills
• Bachelor’s degree in Computer Science or related field, or minimum 4 years equivalent combination of training and experience which provides essential knowledge and skills
• Familiarity with PCI-DSS standards and HIPAA regulations preferred
• PCIP certification – candidate required to have PCIP certification or will obtain within one year of employment in role
• Working knowledge of firewalls and IDS/IPS systems preferred
• Prior experience in information security and/or network security preferred

Work Environment

• Able to sit or stand for long periods of time
• Long periods of time on the computer
• Multiple locations and outlets within walking and driving distance
• Able to lift up to 40 pounds from time to time