Position Title: Business Security Analyst
Location: Aurora, CO
Summary:
The Information Security Office (ISO) is seeking a professional with information security, technology risk assessment, technology audit, or legal experience to join there team. Business Security Analysts work within the ISO s Engagement team but are embedded within city departments to evaluate and consult on information security and privacy risk of business drivers and technology. This position will engage all levels of the business to identify risk and work with business leadership and the CISO to design and execute on remediation projects and build processes that will support the CAO s compliance with industry, legal, as well as policy, security, and privacy requirements.
He will report to the CISO, with a dotted line of responsibility to the department head. This role will work with the City Attorney s Office (CAO) directly and will support the ISO s Risk & Compliance team in fulfilling Colorado Open Records Act and eDiscovery requests on behalf of the IT Department and the Third-Party Risk Management (TPRM) program. This position is a senior-level analyst position due to experience required in building a program, strong interpersonal and documentation skills required, and preference for CAO experience.
Minimum Qualifications:
Education:
Bachelor s degree OR four (4) years of directly relatable experience OR a combination of both equal to four years.
Experience:
You will have an extensive background in information security.
Experience in regulatory compliance or legal practice.
Must be a self-starter and a life-long learner.
Must be a critical thinker who believes security can be an enabler of business.
Well-developed interpersonal and communication skills.
Conflict resolution skills.
Strong documentation skills
Strong communication skills
Excellent analytical, problem-solving, and decision-making skills.
Preferred Experience and Skills:
You will preferably have prior experience performing security for a law firm or other legal organization.
Prior experience using Microsoft Purview.
eDiscovery experience
Risk assessment experience.
Knowledge of cloud-based technology
Experience in IT audit
Experience in technical writing and/or report writing.
Knowledge:
All ISO employees are expected to maintain currency in security practices, technology, and trends.
The ISO provides continuing education assistance to its staff to maintain licensure and learning.
Licenses Or Certificates Required:
You will have, or obtain within your first six months, an applicable security certification such as CISSP, CISA, Security+, or comparable.
Valid Colorado Driver's License.
WORKING CONDITIONS Physical Demands:
Light physical work requiring ability to lift a maximum of 25 pounds, including lifting 10 pounds overhead.
Occasional carrying, walking and standing.
Vision to analyze data and read / interpret reports, documents and other written information.
Hand/eye coordination for operation of computer keyboard.
Speech communication and hearing to maintain communication with employees and citizens.
Capable of driving between city supported buildings and to meetings in the Denver metro area as needed.
Work Environment:
Normally works in a clean, comfortable environment.
Will be a hybrid work environment split between CAO facilities and home office.
Requires occasional travel to physically attend ISO, CAO, and IT meetings.
Equipment Used:
Standard business and professional tools and equipment including computers, laptop computers and mobile computing devices.