Security and Compliance Analyst , Posted: 11/15/2021
Information security program governance, risk assessments, compliance activities and decisions regarding risk, metrics and program improvements.
Contribute to supplier security risk reviews including Software as a Service / Cloud suppliers.
Perform risk assessments and policy exceptions for enterprise solutions.
Review policy exceptions and help identify mitigation plans to enable Intel business partners.
Participate in the planning and direction of supplier security risk assessments to examine and verify security capabilities, behaviors, and controls for authentication, authorization, integrity, availability, assurance, audit, and disposal of Intel's information assets to determine exposure and compliance levels.
Familiarity with Information Technology, Development, Information Security and Industry compliance frameworks such as FFIEC, PCI DSS, NIST CSF, Center for Internet Security, Agile, etc.
Provide proactive and professional communications to Intel business partners, management and suppliers.
Experience working with inter-related infrastructure, software development, and information security risk issues.
5 years of experience in information security technology skills and expertise or one to three years of direct information security experience.
Knowledge of information technology and/or software development risk management frameworks and compliance practices.
Knowledge of information technology, software development, and information security controls.
Ability to develop security policies, standards and guidelines based on best practices and industry frameworks.