Senior Cyber Security AnalystCriteria is a technology company that’s changing the way organizations find and hire great talent.
Headquartered in Los Angeles with offices in New York, Brisbane, Melbourne, and Sydney, Criteria is a global company and we’re growing quickly.
We’ve been featured on the Inc.
5000’s list of fastest-growing private companies in the U.S.
for the last seven years and have been recognized as a Best Place to Work by Inc.
and Built In LA.Most importantly, people are at the heart of everything we do.
Our mission is to help companies and job candidates connect to do fulfilling, meaningful work together.
We hire with the same intention to provide a collaborative, inclusive, and balanced environment where every individual can bring their best selves to work.
About the Role:We are seeking an experienced Cyber Security Analyst to advance and manage our cyber security strategy.
Working with the VP of IT and Security, ensure that our security posture is maintained, make security recommendations to business units, and maintain our ISO27001:2013 certification and implementation.You will be accountable for carrying out activities that monitor, manage and report on Information Risk and Cyber Security Related controls across our global offices and cloud environments.
What You’ll Do:Providing leadership in framing our cybersecurity framework and strategyOwn ISO27001:2013 compliance monitoring and certification across the organizationProvide development and implementation of the cyber governance and risk management function internally and across our third-party suppliers.Internally assess, evaluate, and make recommendations to management regarding the adequacy of the security controlsOperate the cyber security compliance program, ensuring IT activities, processes, and procedures meet defined requirements, policies and regulationsEnsure business units make informed risk decisions and actions, while ensuring that cyber security threats and technology risks are understood, managed and monitored, protecting customers, divisions and our business at all timesImplement processes, such as GRC (governance, risk and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing.
Develops reporting metrics, dashboards, and evidence artifactsWork with the VP of IT and Security to maintain and review Information Systems Risk RegisterMaintain relationships with key cyber security partners providing DR/BC and cyber incident response servicesReview and assure compliance to the requirements of the secure SDLCParticipate in customer supplier audit processes and responses with the sales team What You Should Know/Have:A certification such as (ISC)2 CISSP, CISM, CISSO or tertiary qualification in Cyber SecurityCyber security and GRC experience within a medium to large enterprise with 3+ years experienceWorking knowledge of ISO27001:2013 compliance and certification processesAbility to provide sound benefit/risk advice for the implementation of security controlsAbility to identify threats and vulnerability and define and implement necessary risk mitigation controlsStrong analytical, problem solving and planning skillsBroad experience in information security, standards and best practicesDesirable to have familiarity of NISTDesirable to have knowledge of secure software developmentKnowledge of global privacy regulations What Criteria Brings to the Table:Excellent benefits package (including medical, dental, vision, life insurance, generous paid parental leave policy, and more!)401(k) with employer matchMonthly technology (mobile phone/internet) allowanceBYOD Policy: Bring your dog to work!
When you come into work or join virtual meetings, you’ll frequently be greeted by one of the many Dogs of Criteria (check them out on Instagram: https://www.Instagram.Com/dogsofcriteria)Flexibility to work fully remote, 100% in office, or hybridEquity options in a rapidly growing companyAnd a competitive compensation package Our Mission Around Diversity, Equity, and InclusionWe firmly believe that working in a culture focused on diversity, equity, and inclusion spurs innovation, creates healthy and high-performing teams, and delivers superior customer experiences.
We will create and nurture a global company culture where we confidently bring our authentic selves to work every day: where the only criteria for advancement are the quality of our work, the contributions we make to our teams and the business, and our ability to lead; and where our individual differences—whatever they may be—are valued, explored and appreciated.Criteria is proud to be an Equal Opportunity Employer and provides equal employment opportunities to all employees and applicants regardless of race, color, religion, gender, gender identity, age, national origin, disability, parental or pregnancy status, marriage and civil partnership, sexual orientation, veteran status, or any other characteristic protected by law.
Reasonable accommodations will be made to meet the requirements of the Americans with Disabilities Act and will be provided as requested by candidates taking part in all aspects of the selection process.