Job added in hotlist
Applied job
Contract job
Recruiter job
Employer job
Expanded search
Apply online not available
View more jobs in Los Angeles, CA
View more jobs in California

Job Details

IT Security Analyst Risk Compliance

Company name

Los Angeles, CA

Apply for this job

1 hit(s)  


AEG Company: Anschutz Entertainment Group Inc Job Description: As part of a cross-functional Information Security & Compliance team, the IT Security Analyst (Risk & Compliance) is responsible for conducting risk assessments, security audits, and operating the overall Digital Services compliance program. This Analyst delivers qualitative and quantitative analysis of the risk assessments and audits to feed the overall Digital Services risk management program while managing multiple projects and maintaining technical currency with emerging security technology. This role works with the Director IT Security \u2013 Risk & Compliance and applicable business units to prioritize risk and determine the best course of action for risk mitigation. The IT Security Analyst (Risk & Compliance) develops and maintains security policies and procedures, as well as the education and awareness program. \u2022Document and execute the internal risk analysis process and 3rd party risk process for business partners, affiliates, subsidiaries, and recommend appropriate mitigation to ensure protection of corporate information assets. \u2022Operate the internal and external security regulatory compliance framework and audit processes (e.g. PCI, HIPAA, GDPR, GLBA, etc) and provide metrics to management on a regular basis. \u2022 Support the PCI DSS compliance program by reviewing evidence of compliance, driving necessary system and process improvements and ensure the completion of the annual compliance reports. \u2022 Assist in building and maintaining the compliance frameworks in the GRC tool and provide regular reports to management. \u2022 Develop and maintain of a comprehensive education and awareness program \u2022 Partner with internal and external designers, engineers and management to ensure AEG to develop and analyze threat models and develop security requirements for applications, data, infrastructure, and cloud services \u2022 Review contracts to ensure appropriate data safeguards are included. \u2022 Collaborate with peers across the organization to share solutions and best practices \u2022 Work with Information Security management to develop and maintain security policies, practices and standards. \u2022 Maintain technical currency and continuously leverage opportunities to strengthen skills and broaden expertise. Required Qualifications: \u2022 A minimum education level of: BA\/BS Degree (4-year) in Information Technology, CS\/Engineering, Economics, or Business \u2022 A minimum of 2-4 years of related work experience \u2022 Experience with PCI compliance and related process and operations \u2022 Experience in developing and maintaining information security policy, standards and guidelines \u2022 Strong written and verbal communications skills with the ability to create and present technical and risk recommendations to business leaders as well as influence and persuade others \u2022 Conceptual understanding with deep and broad knowledge over multiple security subject areas and applied experience \u2022 Experience with security industry standards (ISO 27001, NIST Cybersecurity Framework) \u2022 Diverse technical background in Security and Risk Management combined with significant organizational and security industry awareness and knowledge \u2022 Experience managing multiple projects of diverse scope and effectively collaborating in a cross-functional team environment \u2022 Project management experience (planning, organizing, coordinating consulting resources) \u2022 Ability to communicate (written and verbally) highly complex and technical concepts and information risk to a non-technical business audience to aid them in making informed risk decisions. \u2022 Must have experience managing compliance efforts and experience with business risk management with the ability to communicate the balance between strong security and enabling business. Preferred Qualifications: \u2022 Knowledge of all PCI DSS requirements and experience supporting Level 1 or Level 2 PCI DSS compliance effort. \u2022 IT security certifications (CISSP, CISM, CISA, GIAC, CEH or similar) AEG reserves the right to change or modify the employee\u2019s job description whether orally or in writing, at any time during the employment relationship. AEG may require an employee to perform duties outside his\/her normal description. Position Type: Regular Employment Type: Full Time Travel Required: None Shift: Req Create Date: 06\/08\/17 Requisition #: AEG5438

Company info


Company Profile

Similar Jobs:
ENERGY FOR WHAT\u2019S AHEAD Are you looking to make adifference in your career? We\u2019re working on smarter grids, cleaner energy, andtools to help people manage energy more efficiently. About Operational Services: O...
Are you looking to make a difference in your career? We\u2019re working on smarter grids, cleaner energy and tools to help people manage energy more efficiently. About Customer & Operational Services: Southern California Ediso...
Job Code 239668057 Jobid: 239668057 Job Title: Manager - Information Security Compliance Location: Hollywood, CA, USA Job Summary: Who are we? Live Nation Entertainment is the world’s leading live entertainment company comprised o...
I like the volume of jobs on EmploymentCrossing. The quality of jobs is also good. Plus, they get refreshed very often. Great work!
Roberto D - Seattle, WA
  • All we do is research jobs.
  • Our team of researchers, programmers, and analysts find you jobs from over 1,000 career pages and other sources
  • Our members get more interviews and jobs than people who use "public job boards"
Shoot for the moon. Even if you miss it, you will land among the stars.
ComplianceCrossing - #1 Job Aggregation and Private Job-Opening Research Service — The Most Quality Jobs Anywhere
ComplianceCrossing is the first job consolidation service in the employment industry to seek to include every job that exists in the world.
Copyright © 2018 ComplianceCrossing - All rights reserved. 168