Security Analyst - - 13475

基本信息

国家

Filipíny

城市

马尼拉

职位编号

39159

部门

Information Technology

雇主名字

MID_SENIOR_LEVEL

雇主名字

FULL_TIME

Workplace Type

Hybrid

描述和要求

The Security Analyst will be part of the Vulnerability Management team, which is currently expanding and transitioning into a service offering for the entire Infor company. They will collaborate closely with other segments of the Security organization to drive the evolution of cyber defenses within the company, challenge the status quo, leverage a diverse IT background, and employ a comprehensive knowledge to identify, assess, prioritize, and communicate vulnerabilities and threats across the organization.

What You Will Need?

Required skills:

Operational experience in various vulnerability scanning applications, vulnerability management, or related information security fields.
Knowledgeable in NIST and ISO 27001 frameworks.
Familiarity with industry-standard security best practices and vulnerability management processes, including compliance reporting.
Knowledge of general cloud concepts, particularly in AWS and Azure environments and system security controls on multiple operating systems.
Knowledge of Secure Software Development Life Cycle (SSDLC) and concepts related to operating system hardening.
Demonstrate knowledge of Microsoft platform, Open System platform, Virtualization platforms and Databases, and patch management
Knowledge of networking concepts and devices (Firewalls, Routers, Switches, and Load Balancers) and good understanding of network and web-related protocols
Availability to work in the Philippines in GMT or GMT+1 time zones.

What Will Put You Ahead?

Preferred Qualifications:

Demonstrates principled entrepreneurship, practicing mutual benefit, and possessing the ability to attract, motivate, and empower people.
Proven ability to challenge the status quo
Values collaboration as a key aspect of success, with the capability to interact effectively with employees at all levels, both personally and professionally. Displays personal and professional self-awareness, recognizing strengths and areas for development, and actively seeks opportunities for growth.
Experience in automation through programming languages such as Java and Python.
Exhibits a commitment to lifelong learning and self-actualization, continuously seeking out new knowledge and skills to stay ahead in the field of cybersecurity.
Demonstrates flexibility and organizational skills, adapting to changing environments and effectively managing multiple tasks and responsibilities.
Possesses a passion for advanced cybersecurity

A Day in The Life Typically Includes:

Research and report vulnerabilities using various tools in software, firmware, and devices, and modern exploits and exploitation techniques in the following areas: Microsoft platform, Open Systems platforms, Java, Adobe, Web Application, Java web app virtualization platforms, Networking, Databases, and others.
Assess publicly and privately announced security vulnerabilities to determine the risk based on severity, threat likelihood, and impact.
Produce data-driven, meaningful dashboards and reporting that show Security Risk
Constantly transform yourself and the organization by designing correction plans and security findings into avoidance programs.
Create mutual benefit by collaborating with Infrastructure, Application and Development leads on security findings and data-storytelling using your data analytics skills.
Read through system configuration reports and provide systems security hardening practices
Automate manual activities and processes with automation where possible to avoid repeating human intervention and create efficiency and convenience.
Respond on Cyber Threat by analyzing the source, scope, and the impact to protect systems and data.
Suggest improvements and recommendations based on the analyses you do, using various tools and techniques and advise on training, awareness, best practices and policies/procedures to ensure an affective security program.
Identify and recommend appropriate measures to manage and remediate vulnerabilities and reduce potential impacts on information resources to a level acceptable to the senior management of the company.

关于Infor

Infor是面向特定行业市场的企业提供商业云软件产品的全球领导者。Infor在云中构建完整的行业套件，并有效地部署将用户体验放在首位的技术，利用数据科学，并轻松集成到现有系统中。全球超过60,000家组织依靠Infor来帮助克服市场中断并实现全业务范围的数字化转型。

更多信息请访问www.infor.com

我们的价值观

在 Infor，我们努力创造一个建立于基于原则的管理™ (PBM)™ 和八项指导原则的经营理念的环境：诚实正直、守护资源和遵守法规、力求转型、有原则的企业家精神、善用知识、谦虚为怀、尊重他人和实现自我。增加多样性对于反映我们的市场、客户、合作伙伴以及我们现在和未来所服务的社区是非常重要的。br>

我们对基于PBM的文化有着不懈的承诺。PBM™植根于使自由和开放社会蓬勃发展的原则，为个人创新，改进和转型做好准备，同时培养健康，不断增长的业务，为客户和支持者创造长期价值，并充实员工。.

Infor是一个机会均等的雇主。我们致力于创造一个多元化和包容性的工作环境。Infor 不会基于候选人或员工的性别、种族、性别认同、残疾、年龄、性取向、宗教、国籍、兵役身份或任何其他受法律保护的身份而歧视候选人或员工。

在 Infor，我们重视您的隐私，因此我们制定了一项政策，您可以在此处阅读.