Sr Information Security Analyst-Flexible Hybrid

At NCCI, we're looking for a Sr Information Security Analystto join our team in developing and maintaining governance and risk oversight programs. In this role, you'll develop and maintain NCCI’s information security standards, configurations, and policies. You'll be responsible for developing and maintaining controls inventory, providing oversight with internal and external auditors, and maintaining and implementing controls.


WHAT YOU'LL DO:
As a Sr Information Security Analyst, you'll work closely with our security team members to remediate risk while ensuring the business is able to innovate. In addition, you'll:

  • Create and maintain security documentation and configuration practices
  • Perform standards compliance monitoring for Infrastructure Systems
  • Participate in technical and non-technical projects requiring information security representation to ensure policies, programs, and standards are met
  • Manage the Information Security Programs, including the Security Awareness and Information Classification Programs. This includes:
    • Collaborating with business partners to provide guidance regarding the classification of information
    • Working with Human Resources to select and publish the annual security awareness training
    • Managing the Continuous Phishing simulations
    • Providing additional security awareness through various communication mechanisms
  • Daily administration and management of security operations, including but not limited to: PAM, IAM, Encryption Management (i.e., PKI, PGP, SSH), Message Hygiene, Web Filtering, Microsoft 365 Security, Endpoint Protection, etc.

WHAT IT TAKES:

  • Bachelor’s degree and meeting related experience
    • 4+ years experience in a dedicated Information Security role; OR
    • 5+ years experience in an IT administration role, 3+ years of which was in administering and supporting at least one security operations solution, such as:
      • Microsoft 365 security, Privileged Access Management, Identity and Access Management, PKI, Web Filtering, Security Awareness, Endpoint Security, etc.
  • In lieu of a degree, additional work experience and/or trade school or applicable certifications accepted
  • Certification in one of the following: CompTIA Security+, SANS GSEC, ISC2 SSCP, CompTIA CySA+
  • Intermediate knowledge of Information Security concepts, principles, and practices
  • Basic knowledge of security control frameworks, standards, and security best practices
  • Strong client facing skills with ability to participate in and lead conversations with technically diverse teams
  • Working knowledge of IT systems and networking concepts
  • Proven experience managing and administering at least one security operations solutions:
    • Microsoft 365 security, Privileged Access Management, Identity and Access Management, PKI, Web Filtering, Security Awareness, Endpoint Security, etc.
  • Ability to work independently with a moderate level of guidance and direction
  • Proven learning agility and seeks to excel, be curious, and adaptable
  • Basic scripting experience with knowledge of programming languages such as PERL, Java, .NET, etc.
  • Strong organizational, planning, written and verbal communication, and troubleshooting skills
  • Demonstrate effective decision-making skills
  • Ability to effectively communicate business risk as it relates to information security
  • Ability to maintain a high-level of professionalism and confidentiality
  • Ability to work well under pressure
  • Ability to be on-call and work outside of regular business hours as needed

WHAT WILL MAKE YOU A MORE VIABLE CANDIDATE:

  • Bachelor’s degree in computer science or related field
  • Additional IT or Information Security certifications beyond one of the required certifications, such as:
    • CEH (Certified Ethical Hacker), Basic SANS GIAC certifications, Linux+, Network+, CCENT (Cisco Certified Entry Networking Technician), or CCNA (Cisco Certified Network Associate)

WHAT'S IN IT FOR YOU:

  • A competitive starting base salary plus a targeted annual performance bonus
  • A phenomenal work environment, with perks including onsite restaurant and coffee shop, employee activities, onsite fitness center, and sports leagues
  • A wonderful team of dynamic people to work with who are fun, caring and friendly
  • A fantastic benefits package that’s hard to find in South Florida

WHO TO CONTACT:
Zach Wierzba 
Sr Talent Acquisition Specialist 
zach_wierzba@ncci.com

EQUAL EMPLOYMENT OPPORTUNITY:

NCCI Holdings, Inc. is an Equal Opportunity Employer. It is our policy to provide equal opportunities to our employees (for example, in hiring, promotions, training) and to all job applicants, and to maintain a work environment free of discrimination on the basis of race, creed, color, national origin, marital and veteran status, gender, age, status as a qualified individual with a disability, religion, sexual orientation and gender identity or expression, genetic information, or any other basis prohibited by law. This policy applies to all employees and job applicants for employment.

We require a drug screen and background check. Smoke Free environment.