IT Security Analyst I

Are you someone who is passionate about reducing an organization’s risk through IT security procedures? Do you enjoy a role that requires a strong understanding of security strategies while providing the technical expertise of designing, building, installing, configuring, and supporting security administration tools?

Kum & Go is searching for an IT Security Analyst I who will be responsible for the plan, design, enforcement, and PCI (Payment Card Industry) audit of security policies and procedures which safeguard the integrity of and access to enterprise systems, networks, files, and data elements. The Security Analyst I will partner closely with leaders in the organization to develop and implement security policies, procedures, and measures in a Cisco networking environment (network security, server security, firewalls, VPN, and IDS/IPS). This individual will also be responsible for firewall configuration, maintenance, monitoring, and other various network security measures, including investigations.

If you would enjoy the opportunity to partner with IT leadership to assess long-term strategic goals for network, data, and access security management as the organization continues to grow, this could be the perfect opportunity for you!

What you’ll do

• Have responsibility for network and server security, firewall configuration, VPN, IDS, and maintenance and monitoring of all general security compliance for the corporate headquarters facility, 4,500 associates, as well as 450+ retail stores. This involves assisting IT Engineers in the troubleshooting of network access problems and ensuring network (LAN/WAN, telecommunications, and voice) security access to compliance to security policies.
• Partner with others to reduce organizational risk by performing security assessments, penetration tests, and investigations while reviewing networking initiatives for security compliance. The role will also protect against unauthorized access, modification, or destruction, while working with the Director of IT Infrastructure to complete the PCI audit in coordination with Kum & Go’s external security auditor and internal colleagues.
• Assist in the development and implementation of security policies, procedures, and measures in a CISCO networking environment. This role will also educate users about network security policies and will consult on security issues.
• Partner with the Director of IT Infrastructure and the IT Architect to assess and develop long-term strategic goals for network, data, and access security management to align with business expansion. The IT Security Analyst I will evaluate and recommend security products for various platforms in the networking environment.
• Provide management with risk assessments and security briefings to advise them of critical issues that may affect customer or corporate security objectives; this includes defining and implementing remediation plans.
• Work with the DBA to perform database transaction and security audits, while establishing appropriate end-user database access control levels.
• Provide security guidance to other members of the IT team.

What we’re looking for

• Preferred CISCO CCNP or CCNA certification, or similar (CISA, CISM, etc.)
• Strong understanding of security strategies, theories, principles, and practices
• Technical experience with designing, building, installing, configuring, and supporting security administration tools
• Hands-on CISCO network tool experience
• Experience with multiple security models
• Knowledge of applicable data, network, and access privacy practices and laws (ideally in PCI)
• Good written and oral communication skills; good interpersonal skills
• Strong technical documentation skills
• Ability to conduct research into security issues, standards, and products, as required
• Ability to conduct audits and assessments of policies and procedures; ability to present findings in a clear and concise manner
• Highly self-motivated and directed
• High attention to detail
• Proven analytical and problem-solving abilities
• Ability to effectively prioritize and execute tasks in a high-pressure environment
• Strong customer service orientation
• Experience working in a team-oriented, collaborative environment

Other key requirements

• Bachelor’s Degree in Computer Science/Management Information Systems plus 1-3 years of direct experience in security administration OR
• Associate’s Degree/Technical schooling plus 2-6 years of security administration
• CISCO certification and PCI experience is ideal

Leadership Competencies

• Communication: Delivers clear, effective communication and listens to others
• Conceptual/Systems Thinking: Recognizes patterns, trends, themes, and connections in information to develop innovative ideas and solutions
• Constructive Engagement: Expresses ideas and disagreements, constructively resolves conflict, and encourages others to do the same
• Customer Orientation: Meets the expectations and needs of internal and external customers
• Decision Making: Makes good decisions in a timely manner
• Empowerment: Takes initiative and solves problems
• Talent Development: Maximizes potential and improves overall performance
• Influence: Proactively builds relationships and influences others
• Analytical Thinking/Problem Solving: Accurately assesses problems and effectively and efficiently arrives at solutions
• Strategic Thinking: Understands the current state and is able to visualize the ideal state and how to achieve it

Kum & Go in an Equal Opportunity Employer