Information Security Analysts III
Global Payments Inc.
Date: 7 hours ago
City: Quezon City
Contract type: Full time

Summary
Description Summary of This Role
Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information security policies, procedures and systems, including hardware, firmware and software . Ensures that IS security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS security . Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents. Investigates and resolves security incidents and recommends enhancements to improve security. Develops techniques and procedures for conducting IS security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents.
What Part Will You Play?
Minimum Qualifications
Description Summary of This Role
Evaluates, tests, recommends, develops, coordinates, monitors, and maintains information security policies, procedures and systems, including hardware, firmware and software . Ensures that IS security architecture/designs, plans, controls, processes, standards, policies and procedures are aligned with IS standards and overall IS security . Identifies security risks and exposures, determines the causes of security violations and suggests procedures to halt future incidents. Investigates and resolves security incidents and recommends enhancements to improve security. Develops techniques and procedures for conducting IS security risk assessments and compliance audits, the evaluation and testing of hardware, firmware and software for possible impact on system security, and the investigation and resolution of security incidents.
What Part Will You Play?
- Proactively monitors complex systems and response to known and emerging threats against the Global Payments network via intrusion detection software
- Completes detailed, comprehensive investigation of security issues by reviewing security log data, interpreting data in support of security event management process from various data feeds and triages on a wide variety of security events.
- Performs incident handling process by maintaining knowledge in implementation of containment, protection and remediation activities.
- Keeps up-to-date knowledge of new and emerging threats that can affect the organization's information assets by analyzing of third party software/solutions, IT configuration changes (including access control requests), and network/system architecture from risk perspective
- Responsible for the design and configuration of security systems, including proxy, remote access, mail gateway, intrusion prevention, wireless networking, data leak prevention, security information and event management and web application firewalls.
- Provides input in assessing and disseminating threats related to the enterprise in regard to current vulnerability by managing and developing an emerging threat model.
- Assesses risks based on changes to implementation of ISO(International Organization for Standardization)/BSO(Business Services Online); enhances knowledge of PCI(Payment Card Industry)/Logical Security guidelines and models, HIPPA(health insurance portability and accountability act), PII(Personally Identifiable Information), and Card personalization.
- Creates cost effective solutions for system/application development regarding Information Security processes and concepts in applicable systems and software.
- Performs day-to-day Information Security functions pertaining to computer access control on numerous security software products and processes.
- Enhance understanding of business objectives and helps providing direction based on risk, Corporate Policy, and association and regulatory guidelines.
- Participates in developing long term strategies for conducting system penetration, vulnerability and web application testing, risk assessments, policy creation.
Minimum Qualifications
- Bachelor's Degree
- Relevant Experience or Degree in: Bachelor's degree in Computer Science, Info Security, or related field. Or related work experience.
- Typically Minimum 4 Years Relevant Exp
- Including network operations or engineering or system administration on Unix, Linux, MAC(Message Authentication Code), or Windows; proven experience working with security operations, intrusion detection systems, Security Incident Even Management systems, and anti-virus collection logs; including knowledge of industry standard security compliance programs (PCI, SOX, GLBA, etc.)
- Professional certifications CISSP(Certified Information System Security Professional),CISM(Certified Information Security Manager) ,CISA(Certified-Information-Systems-Auditor),GSEC(GIAC Security Essentials) ,Network +,Security +
- Typically Minimum 6 Years Relevant Exp
- Knowledge of industry standard security compliance programs (PCI(Payment Card Industry), SOX(Sarbanes-Oxley) , GLBA(Gramm Leach Bliley Act))
- Skills / Knowledge - A seasoned, experienced professional with a full understanding of area of specialization; resolves a wide range of issues in creative ways. This job is the fully qualified, career-oriented, journey-level position.
- Job Complexity - Works on problems of diverse scope where analysis of data requires evaluation of identifiable factors. Demonstrates good judgment in selecting methods and techniques for obtaining solutions. Networks with senior internal and external personnel in own area of expertise.
- Supervision - Normally receives little instruction on day-to-day work, general instructions on new assignments.
- Risk Assessment - Ability to identify, communicate, and mitigate risk within technical solution designs
- Industry Knowledge - Continued self-education of new and emerging threats and relevant processes, controls, or technologies to mitigate them.
- Incident Response - Knowledge and skills to contribute to all phases of Incident Response.
How to apply
To apply for this job you need to authorize on our website. If you don't have an account yet, please register.
Post a resumeSimilar jobs
HR Officer for Brand Communications Campaign/15-17k/QC
Dempsey Resource Management,
Quezon City
10 hours ago
Job QualificationGraduate of BS Psychology, Business Administration, or other related coursesFresh graduates are welcome to applyStrong communication and interpersonal skills, with the ability to build positive relationshipsExcellent attention to detail, organizational, and time-management skillsCommitment to maintaining confidentiality and a high level of professionalismFamiliarity with Philippine labor laws and HR best practicesDuties And ResponsibilitiesAssisting with the end-to-end recruitment process, including sourcing,...

AI Infrastructure Architecture Specialist (DevOps Engineer)
Accenture in the Philippines,
Quezon City
23 hours ago
Join Accenture and help transform leading organizations and communities around the world. The sheer scale of our capabilities and client engagements and the way we collaborate, operate, and deliver value provides an unapparelled opportunity to grow and advance. Choose Accenture and make delivering innovative work part of your extraordinary career.The DevOps Engineer: Work with log and search analysis to support...

Travel Account - Call Center Agent
Caldwell Communications,
Quezon City
2 days ago
WANT TO GET HIRED ASAP? GRAB OUR JOBS TODAY AND BE PRIORITIZED DURING THE PROCESS. LEARN MORE ABOUT OUR JOB VACANCIES BELOW.We are continuously looking for top talents to join our team. We achieve stability in our organization by treating our employees the same way we treat our valued clients, with utmost care.List Of Vacancies We Have For You Customer...
