Job Summary:
The Information Security Analyst will be responsible for developing and managing information integrity, confidentiality, and availability through the integration of security policies, security awareness, access controls, environmental controls, and the implementation of security-related technology.
This position oversees network security operations, including endpoint protection, intrusion detection and/or prevention systems, border protection systems, data loss prevention, and activity monitoring to ensure the companys network, computer hardware, and data are protected from security breaches. Essential Duties and Responsibilities: Develop and maintain strong internal working relationships across restor3d. Understand the objectives, responsibilities, and mission of the Information Technology department and work towards those goals. Prioritize and plan work activities; adapt for changing conditions. Develop and implement comprehensive information security policies, procedures, and guidelines in alignment with industry standards and regulatory requirements. Collaborate with cross-functional teams, including IT, legal, compliance, and risk management, to ensure a cohesive approach to information security across the organization. Assess and analyze security risks, threats, and vulnerabilities to our systems, networks, and data, and develop strategies to mitigate these risks effectively. Lead and oversee the implementation and maintenance of security controls, including firewalls, intrusion detection systems, encryption mechanisms, and access management solutions. Conduct regular security audits, vulnerability assessments, and penetration testing to identify weaknesses in our infrastructure/applications and implement remediation measures. Lead the vendor risk assessment process, evaluating the security practices and controls of third-party vendors and service providers to ensure they meet our information security standards. Serve as the primary point of contact for information security incidents, investigations, and breach response efforts, and coordinate with internal and external stakeholders to resolve issues promptly. Plan and develop user security awareness, training, and education programs to safeguard information against accidental or unauthorized modification, destruction, or disclosure of critical information through mishandling of information. Maintain ownership over network security operations (Firewall/DMZ, IPS/IDC, Endpoint Protection, Identity/Access Management, etc.) Stay updated on the latest trends, technologies, and threats in information security, and provide guidance and training to employees on cybersecurity best practices. Other responsibilities as assigned. Qualifications: 5+ years of hands-on technical experience in Information Security, Risk and Compliance field; preferably in a regulated environment Bachelor's degree in computer science, information technology, cybersecurity, or related field, or equivalent experience Advanced degree or relevant certifications (e.g., CISSP, CISM, CISA) preferred Proven experience (3 - 5 years) in information security, with a focus on network security, data protection, risk assessment, and compliance Previous Life Science and Medical Device industry experience strongly preferred Strong understanding of relevant regulations, standards, and frameworks (e.g., HIPAA, GDPR, ISO 27001, NIST) relevant to information security in the life science manufacturing industry Proficiency in conducting security assessments, penetration testing, and incident response activities Excellent analytical skills and attention to detail, with the ability to identify and address security risks effectively Strong communication and interpersonal skills, with the ability to collaborate effectively with internal and external stakeholders at all levels of the organization Ability to work independently, prioritize tasks, and manage multiple projects simultaneously in a fast-paced environment A strong understanding and demonstrated ability to manager full spectrum of Information Technology Services Skills, Abilities, Competencies Required: Excellent written and verbal communication skills. Able to work accurately in a fast-paced, hectic, ever-changing environment with strong attention to detail. Demonstrated ability to monitor own work to ensure quality, accuracy, and thoroughness. Strong organizational, analytical, and time-management skills. Able to self-motivate and work both independently and as part of a team. Ability to travel up to 15%, both domestically and internationally as needed Ability to work in an office environment, including sitting for extended periods, using a computer, and performing tasks requiring manual dexterity. Must be able to lift and carry equipment weighing up to 25 pounds for the purpose of setting up and maintaining security hardware or conducting on-site assessments. retor3d is an Equal Opportunity Employer
