30 days old

Information Security Analyst III (Req 748)

Reliance Steel & Aluminum Co.
Cypress, California 90630
  • Job Code
    Div. 98 (Req 748)
  • Job Type
    Employee
  • Job Status
    Full Time
  • Shift
    1st Shift

Application Process:  To be considered for this position, the candidate must submit their resume to recruiting@rsac.com and specify the title and requisition number for which they are applying in the subject line or body of the email.

 

Job Summary

The Information Security Analyst III leverages experience in information systems and security to assist with the development of policies and governance that adapt to changing threats over the long term. The Information Security Analyst III assists with Information Security Engineering in the development of architectures, solutions and standards.  In addition, the Information Security Analyst III works with other RTS teams to promote secure designs and practices across the company that mitigate risks and meet business objectives and regulatory requirements.

Essential Functions

Security Governance - Establish and maintain self-audits, policies and procedures to provide assurance that information security strategies are aligned with applicable laws and regulations through adherence to internal controls.

  • Actively review the security landscape and develop/review security policies and procedures to address new regulation, threats or best practices
  • Understand and review existing self-audits, recommend new self-audits based on new applications, services, threats, regulation or best practices
  • Plan and manage the development of end user security training and awareness program

Threat Management - Ability to understand security threats and their risk to the organization.

  • Recommend periodic security assessments, vulnerability and pen tests.
  • Assist in the analysis of security assessment results and development of management summary.
  • Assist IT groups in their understanding of the security assessment results and the remediation steps for low-medium complexity issues.
  • Lead the tracking of any remediation required due to security assessments / tests.

Security Roadmap – Ability to guide the organization in the development of the Security Program Roadmap.

  • Contribute to the development of the Security Program Roadmap.

Security Engineering - Architects and implements security technologies.

  • Seek, suggest and recommend new ideas for continuous improvements in work processes and results.  

Supplemental Duties & Responsibilities

  • Pursues training and development opportunities; strives to continuously build knowledge and skills
  • Assist personnel in other RTS departments to resolve technical and/or application issues
  • Participate and assist in the coordination of both internal and external audits
  • Other duties as requested

Core Competencies

Problem Solving - Ability to problem solve through problem identification (what is the problem), solution assessment (what can be done), problem documentation (document for future) and problem response (implementing a solution).

   Able to:

  • Frame problems before trying to solve them
  • Seek advice from those who have solved similar problems
  • Follow up to ensure that the problem has been resolved
  • Document and disseminate identification and resolution of problems to avoid future redundant work efforts
  • Break down problems and identify all of their components
  • Provide insight into the root-causes of problems
  • Anticipate problems and is proactive in addressing them
  • Ask perceptive questions to seek optimal solutions.                                                                                         
  • Involve the team in problem solving.                                                                                                                    
  • Generate a range of solutions and courses of action with benefits, costs, and risks associated with each.                                                                                                                                                      
  • Explore various sources for answers, and thinks "outside the box" to find options.                                                                               
  • Open to other's ideas to help develop solutions.                                                                                                                       
  • Help others cultivate their problem solving skills.

Decision making - Makes sound, well-informed, and objective decisions; perceives the impact and implications of decisions; commits to action, even in uncertain situations, to accomplish organizational goals.

   Able to:

  • Gather data and others' input when making decisions
  • Consider lessons learned from experience, differing needs, and the impact of the decision on others
  • Escalate decisions when appropriate
  • Balance analysis, insight, experience, and perspective when making decisions
  • Find solutions that are acceptable to diverse groups with conflicting interests and needs
  • Weigh pros and cons of each option before making a decision and moving forward.                                                                                    
  • Can explain the rationale for a decision.                                                                             
  • Follow up to ensure decision was implemented.

 Customer Service - Ability to develop and maintain strong relationships with customers by listening, understanding and responding to their needs.

   Able to:

  • Provide service to internal and external customers to satisfy their needs and expectations
  • Listen to concerns and resolve reported issues effectively and promptly
  • Ensure and comply to customer response timeline (SLAs) based on the severity of reported issues including documenting concise and accurate status information in the Service Now ticketing system
  • Commit to continuous improvement
  • Anticipate customer’s needs and move to effectively address issues
  • Establish relationship with customers providing education as appropriate
  • Deliver high quality solutions
  • Elicit feedback from customers.                   
  • Assist in creating strategies to help the organization serve customers.

Building Collaborative Relationships - Develops, maintains, and strengthens partnerships with others inside or outside the organization.

Able to:

  • Establish rapport with co-workers easily
  • Work with others to achieve goals
  • Listen and respond constructively to other team members' ideas
  • Encourage and facilitate cooperation, pride, trust and group identity
  • Foster commitment and team spirit
  • Offer support for others' ideas and proposals
  • Be open with other team members about his/her concerns
  • Share his/her expertise with others
  • Acknowledge team members for their contributions                                            
  • Provide assistance to others when they need it
  • Work for solutions that all team members can support                                                                                                
  • Effectively persuade and influences team members to achieve goals                     
  • Seek to resolve confrontations and disagreements constructively

Accountability - Holds self-accountable for measurable high-quality, timely, and cost-effective results.

Able to:

  • Facilitate between own functional area and areas below or above in the work stream as needed
  • Set well-defined and realistic goals
  • Comply with established policies and procedures
  • Accept responsibility for mistakes
  • Take ownership of successful outcome of work assignments/projects through collaborative efforts with team
  • Minimize re-work
  • Seek out learning opportunities
  • Identify training needs and take action to obtain knowledge
  • Persistently push self and others for results
  • Collaborate between own functional area and areas below or above in the work stream needed
  • Help others
  • Persistently pushes self and others for results
  • Provide consistency between projects
  • Display initiative, effort, and commitment towards completing assignments
  • Facilitates between own functional area and areas below or above in the project stream as needed
  • Allocate work were applicable
  • Anticipate and adjusts for problems and roadblocks
  • Is enthusiastic for the things he/she sees as challenging
  • Display a high-level of initiative, effort, and commitment towards completing assignments

Company Business Knowledge - Understands the company, its products and the business processes.

Able to:

  • Has broad Reliance business knowledge and integrates it into optimal technology solutions for business processes

Communication - Ability to communicate effectively across all levels to support departmental and organizational objectives.

Able to:

  • Clearly express information taking into account audience and nature of the information (for example, non-technical, sensitive, and controversial)
  • Ask questions and summarize what was heard to prevent miscommunication
  • Present information in a concise and focused manner
  • Listen to others
  • Communicate written information (for example, facts, ideas, or messages) in a succinct and organized manner
  • Produce written information, which may include technical material that is appropriate for the intended audience
  • Shares ideas and perspectives and encourages others to do the same.
  • Keeps others informed of new developments.
  • Tailors communications to audience to have the desired effect.

Leadership – Displays effort and commitment in carrying out the department’s goals and objectives.

Able to:

  • Act in a proactive and achievement-oriented manner
  • Treat co-workers in a fair and equitable manner
  • Behave in a tactful, compassionate, and sensitive manner
  • Empower others by sharing information
  • Actively listen and clarify information as needed
  • Foster an atmosphere of open communication
  • Guide others toward goal accomplishment.                         
  • Consider and responds appropriately to the needs, feelings, and capabilities of different people in different situations.
  • Share best practices and processes

Requirements

  • Bachelor’s Degree or equivalent work experience in a related field required
  • 5+ years’ experience in an Information Security role to include experience in assessing and recommending internal application and infrastructure controls required
  • Must be self-motivated and able to work independently, with minimal supervision and as part of a team
  • Professional security management certification, such as a ISC(2) Certified Information Systems Security Professional (CISSP), SANS GIAC Information Security Professional (GISP), GIAC-Security Expert (GSE), or GIAC Certified Enterprise Defender ( GCED ) highly desirable
  • Knowledge and experience with common information security management frameworks and best practices, specifically the National Institute of Standards and Technology (NIST) frameworks and Center for Internet Security (CIS) Critical Security Controls required
  • Knowledge and experience with security infrastructures (e.g. Firewalls, IDS/IPS, VPN, Web Content Filters, Proxies, DLP, SIEM, Log aggregation correlation technologies) required.
  • General understanding to technical infrastructure (Active Directory, Applications, various Operating Systems, etc)
  • Detail oriented with excellent interpersonal communication skills
  • Expected to partner, collaborate, and mentor effectively with other teams on an ongoing basis
  • Strong conceptual thinking and communication skills - the ability to translate complex business and technical requirements into effective solutions
  • Strong organizational skills and ability to multi-task in an enterprise business environment. Ability to manage/track completion of projects and remediation tasks.
  • Outstanding technical documentation skills
  • Strong written, verbal and presentation communication skills and ability to communicate at all levels within an organization

 

Application Process:  To be considered for this position, the candidate must submit their resume to recruiting@rsac.com and specify the title and requisition number for which they are applying in the subject line or body of the email.

 

We are an Equal Opportunity/Affirmative Action Employer. All persons shall have the opportunity to be considered for employment without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other characteristic protected by applicable federal, state or local law.
 
We will endeavor to make a reasonable accommodation to the known physical or mental limitations of a qualified applicant with a disability unless the accommodation would impose an undue hardship on the operation of our business. If you believe you require such assistance to apply for the position or to participate in an interview, please let us know. 
 
Reliance Steel & Aluminum Co. provides reasonable accommodation for individuals protected by Section 503 of the Rehabilitation Act of 1973, the Vietnam Era Veterans' Readjustment Assistance Act of 1974 and Title I of the Americans with Disabilities Act of 1990.  Applicants who need accommodation in the job application process should contact Gabe Muñoz at (213) 576-2426 or e-mail 
Gabriel.munoz@rsac.comto request an accommodation.

Categories

Posted: 2019-11-08 Expires: 2019-12-08

Share this job:

Information Security Analyst III (Req 748)

Reliance Steel & Aluminum Co.
Cypress, California 90630

Join us to start saving your Favorite Jobs!

Sign In Create Account
Powered ByCareerCast