This site uses cookies. To find out more, see our Cookies Policy

Sr. Cloud Security Analyst in San Diego, CA at Spartan Resources, LLC

Date Posted: 2/1/2018

Job Snapshot

Job Description

Senior Cloud Security Analyst


Description

The Senior Cloud Security Analyst will be responsible for understanding the customer’s security requirements, and then implementing security solutions that 1) meet the customer’s requirements, and 2) align with the standard managed cloud security policies and procedures. The role requires expertise in ISO27001, SSAE16, PCI, HIPAA security standards. 

Skills & Attributes

  • Experience deploying security solutions meeting one or more of the following security standards:  NIST/FedRAMP, ISO 27001, ISO 27002, PCI DSS, HIPAA Security Rules 
  • Strong understanding of application security and industry standards and best practices 
  • Must be a self-starter and able to work well with others in a fast-paced agile environment with an emphasis on collaborating and assisting the team to meet business objectives 
  • Ability to quickly develop working relationships with peers and key stakeholders, such as business partners, legal, internal audit and technology specialists. 
  • Experience with Amazon Web Services (AWS) and Microsoft Azure security models 
  • Experience with information technology operations, information security operations, business continuity and disaster recovery. 
  • You are very customer driven and help bring the voice of customer into every technical decision 
  • You are a thought leader in the application of analytical solutions and products to solve business problems 



Job Requirements

Qualifications

Required Qualifications 

  • Bachelor’s degree in information security/systems or related experience 
  • 7+ years of experience in information security and privacy 
  • Demonstrated ability to clearly communicate information security to a wide audience of both technical and non-technical personnel (customers, auditors, legal staff, engineers) 
  • Result oriented with an ability to manage multiple projects simultaneously 
  • Proven experience in developing and optimizing customer due diligence processes (RFPs, questionnaires CCAIQ, BITS SIG questionnaires…) 
  • Experience conducting and facilitating security audits (ISO 27001:2013, PCI DSS, HIPAA, SOC 2 Type 2 reports) 
  • Proven experience in developing simple, effective and easy to adopt security policies 
  • Proven experience rationalizing policies using unified control frameworks (UCF, CSA’ Cloud Control Matrix) 
  • Candidate must have the expertise to understand the Cloud’s technical and business environment, strong familiarity with security standards, and audit requirements including NIST/FedRAMP, ISO 27001:2013, PCI DSS, HIPAA, SOC 2 Type 2 reports 


Preferred Qualifications
 

  • CISA and/or CISSP certification 
  • Hands on experience implementing security within public cloud services (AWS, Azure, Google) 
  • Experience with EU regulations and EU data privacy a definite plus