Fixity Technologies LLC

Compensation

Full Description

Job Description: THE PURPOSE OF THIS ROLE We are looking for a (Senior) Security Analyst/Engineer, group of IT experts. The (Senior) Security Analyst/Engineer will strengthen our existing IT team, acting as a 1st Line of Defense (1LoD) for information security. You will ensure that PMI IT systems are deployed and maintained securely, collaborating closely with Engineering teams to meet InfoSec standard requirements. WHO ARE WE LOOKING FOR? In this role, you MUST: • Have a university degree, preferably in Computer Science, Information Security, Cybersecurity, Engineering, or a related field • Have a minimum of 5 years of experience in an information security, IT risk management, or IT audit function within a large organization • Have a general understanding of regulatory requirements (e.g., SOX, GDPR, PCI) and their impact on systems • Be a problem solver with excellent organizational skills • Be disciplined and autonomous in handling demands within a constantly changing environment and working closely to deliver committed results • Be courageous and determined to get things done through others, able to persuade them into executing on your request, tracking timelines, and escalating if necessary • Have strong presentation, verbal, and written communication skills in English with the ability to articulate complex ideas in easy-to-understand business terms to all levels of the organization • Have the ability to effectively manage multiple stakeholders and competing priorities with high attention to detail This role is NOT FOR YOU if you: • Are not a subject matter expert in information security, IT risk management, or IT audit • Expect others to organize your daily work; instead, as the senior subject-matter expert, you will define work not only for yourself but also influence workstreams of others: your peers as well as colleagues in Product and Engineering teams • Can//'t deal with ambiguity and uncertainty – instead, you will act with courage and determination to bring everyone /"on the same page/" • Struggle with prioritizing work and get overwhelmed when things are not clear enough – instead, you will act with energy toward driving outcomes, get things done, and achieve impact despite challenges and adversity HOW WILL YOU MAKE HISTORY WITH US? • Own key security processes and drive process adherence for systems of PMI Data Platform to achieve SLA/KPI compliance o Patch Management: Ensure all infrastructure and software are regularly patched and upgraded o Vulnerability Management: Ensure all identified vulnerabilities are closed within SLA o IT Risk Management: Ensure all IT risks have updated action plans in place and that these action plans are executed on time o IT Resilience: Ensure all critical systems have backup, restore, and IT Disaster Recovery arrangements in place and that they are documented (e.g., IT DR Plan) and regularly tested (e.g., backup restoration testing, IT DR Plan testing) • Lead, in strong partnership with Product Owners and Engineering Managers, adherence of PMI IT systems to all PMI policies and standards defined in PMI//'s IT Policy Framework (ITPF) • Support projects (implementation of new and evolution of existing IT applications) throughout the entire process in all IT security-related topics • Develop, monitor, report, and perform active governance on key security metrics for IT systems • Support the execution of key PMI Information Security Programs for IT systems • Act as a single point of contact between PMI IT teams and risk assurance functions at PMI • Partner with Information Security (2LoD) to ensure that PMI follows best practices and latest market standards for IT systems