Lead Information Security Analyst

Overview

Découvrez votre prochaine opportunité au sein d'une organisation qui compte parmi les 500 plus importantes entreprises mondiales. Envisagez des opportunités innovantes, découvrez notre culture enrichissante et travaillez avec des équipes talentueuses qui vous poussent à vous développer chaque jour. Nous savons ce qu’il faut faire pour diriger UPS vers l'avenir : des personnes passionnées dotées d’une combinaison unique de compétences. Si vous avez les qualités, de la motivation, de l'autonomie ou le leadership pour diriger des équipes, il existe des postes adaptés à vos aspirations et à vos compétences d'aujourd'hui et de demain.

Job Summary

Fiche de poste :

This role will remain part of EMEAI + LATAM Information Security Team and have InfoSec responsibilities for EMEAI and LATAM Information Security GRC initiatives.

The Lead Information Security Analyst role conducts Security Risk Assessments with an aim to determine the effectiveness of security controls, identifies risks and control gaps and provide an independent assurance to the leadership. This position facilitates collaboration with other IT and non-IT functions enabling them to operate in a risk aware environment.

The role shall conduct Information Security Assessments on Vendors who process UPS or UPS Customer Data based on industry standard security frameworks such as SIG, CAIQ, NIST 800:53 or ISO27001. The role will also lead negotiations with the Vendors to sign Information Security Agreements.

In addition to responding to Customer RFPs on Information Security, the role will provide SME support for any Customer Assurance Audits representing the interests of UPS and shall also engage in the review of the standard Information Security clauses in any agreements with Customers.

The role will collaborate with other teams such as Privacy and Aviation and ensure appropriate responses are provided to Information Security / Cyber Security related compliance questionnaire to Regulators.

The role will oversee a team of Analysts / Associates and will guide and trains colleagues to increase their skill sets and knowledge. The role must be able to work independently with little supervision or oversight.

The role must maintain a current knowledge of emerging technologies and cyber / privacy regulations.

The role must act as a trusted advisor to the IT, Privacy, and other business teams.

Professional Experience/Skills

• Hands-on administration of RACF and ACF2 login ID’s, dataset and resource rules.
• Hands – on Experience in Mainframe Digital certificates.
• Monitor system security policy and violations/incidents
• Perform and review daily, weekly, and monthly audit reports
• Good Experience in tools like vanguard, Zsecure, Carla scripts.
• Liaison with business areas and other technical support areas
• Provide customer support by preparing ad hoc reports and giving presentations
• Monitors the environment for adherence to security standards
• Must be available 24 x7
• ACF2, Top Secret, and iSeries security knowledge a plus
  
  

Development and rollout of Information Security Policies and Standards

Leading / conducting Information Security Assessments to comply with various industry standards including working knowledge of cyber & privacy regulations such as NIS 2.0 and GDPR in addition of expertise in standards such as ISO27001 and NIST 800:53 / NIST 800:171

Information Security Risk Management

Fundamentals on one of more of the following areas: Security Operations, Security Architecture & Engineering, IT Networking, IT development and Cloud technologies.

Education

14+ years of experience.

The Lead Information Security Analyst will possess a degree or beyond in domains

such as Information or Cyber Security, Information Systems, Computer Science, Mathematics, or related field or its equivalent and a credible work experience.

Certifications

Must possess one or more of the following certifications or their equivalent:

CISA or CISM or CISSP or Cloud Security

Any additional technology related certifications will be an added advantage.

Type De Contrat

en CDI

Chez UPS, égalité des chances, traitement équitable et environnement de travail inclusif sont des valeurs clefs auxquelles nous sommes attachés.