The Information Security team is responsible for the design of secure solutions and systems, investigation of security incidents, and discovery and mitigation of vulnerabilities, both internal and external. Our team covers all aspects of cybersecurity for Coverys, from application security, to data and network security, to penetration testing, and to security operations and monitoring. We are looking for a curious, collaborative, critical thinker to support our team and our organization. Essential Duties & Responsibilities
- Assist the Information Security team with day-to-day duties such as vendor risk analysis, various support activities, and promoting security awareness in the company.
- Support and conduct security and privacy assessments of systems, data flows, and third-party vendors
- Perform log reviews and analyze security events and threats
- Analyze security issues, determine cause and impact, and recommend corrective action
- Identify, coordinate, track, and report remediation for high-risk vulnerabilities
- Participate in establishing appropriate controls for Cloud Security, Endpoint Protection, Security Software Development, Identity & Access Management, and Data Protection
- Participate in the development, maintenance and implementation of security tools
- Collaborate with Information Security team to provide exceptional support and problem resolution
- Review and update security and privacy policies, standards, and procedures
- Support and help devise security awareness campaigns
- Research security trends, new methods, and techniques used in order to preemptively eliminate the possibility of an incident
- Review and understand compliance regulations, such as HIPAA
- Participate in team initiatives
- Support the company's commitment to protect the integrity and confidentiality of systems and data
Education, Requirements & Competencies - Working towards Bachelors or comparable work experience and proven track record of strong academic performance
- Eagerness to learn with a general understanding of cybersecurity principles and practices, strategies and methodologies
- Technical capability and/or interest in one or more of these areas:
- Log analysis
- Identity and Access Management
- Ethical Hacking
- Network security engineering and administration concepts
- DevSecOps - Continuous Integration/Continuous Delivery process and tools, testing frameworks and practices
- Cloud networking concepts and network security controls
- Ability to work independently and within a team environment
- Effective written and oral communication skills
- Ability to present findings and recommendations to peers and coworkers
- Are self-driven and motivated to work in a results-driven agile environment
If you're a caring and customer focused individual who enjoys working with passionate team members, Coverys is the right company for you!