Information Security Analyst

Location
Columbus, Ohio
Posted
Jun 19, 2022
Ref
4457009004
Hotbed
BioMidwest
Required Education
Bachelors Degree
Position Type
Full time

Job Title: Information Security Analyst

Reports to: Compliance Director

 

Role information:

Forge Biologics, Inc. is looking for an Information Security Analyst to join our team. This is an exciting opportunity to grow with a gene therapy manufacturer working to enable access to life changing therapies.  This role will be responsible for the Information Security posture at Forge and will work across functional groups of the organization (primarily IT, Quality Assurance, and Operations) to integrate security principles and standards while we build our network and systems.

 

The ideal candidate will demonstrate understanding of security frameworks and how to implement through an organization with cGMP requirements and systems automation.

Responsibilities:

  • Develop security standards and best practices
  • Maintain and track awareness training for organization on information security standards, policies, and best practices, as appropriate
  • Research the latest information technology (IT) security trends
  • Recommend security enhancements to management or senior IT staff and collaborate to implement IT projects and security improvements
  • Knowledge of risk assessment tools, technologies, and methods
  • Assist with IT disaster recovery creation and periodic testing
  • Monitor networks and systems for security breaches, using software that detects intrusions and anomalous system behavior
  • Investigate security breaches
  • Lead incident response, including steps to minimize the impact and then conducting a technical and forensic investigation into how the breach happened and the extent of the damage
  • Conduct periodic network scans to find vulnerabilities
  • Conduct penetration testing, simulating an attack on the system to find exploitable weaknesses
  • Travel may be infrequently (10-20%) required to support job responsibilities and commitments

Important skills:

  • Proficient with MS O365
  • Familiarity with industry standards and security frameworks
  • Understanding of various systems including MAC OS, hardware, and supporting tools
  • Familiarity with ATP/EDR agents, Anti Malware systems, Vulnerability Management, Penetration Testing, Email Security Systems, Data Leakage Protection, Data Encryption, Antivirus, Firewalls, WAF, SIEM (Log Analysis) a big plus.
  • Analytical skills: Study of the systems and risk assessment for continuous improvement
  • Detail oriented:  Minor changes in system performance might be indicative of a cyberattack
  • Ingenuity:  Anticipation of risk and implementation of new methodology to respond to the ever-changing threat landscape 
  • Problem-solving skills: Uncovering and helping resolve flaws in the systems and network  
  • Interpersonal, written, and verbal communication skills: Convey messages to the organization and management in an effective, efficient manner

Education or relevant experience

  • BS in Computer Science or relevant experience
  • 3+ years in information security aspects relating to enterprise IT system, software, communications, and network protocols preferred
  • Security +, CISSP, SANS certifications or equivalent preferred

Requirement

  •  In our commitment to safety of our employees and customers a COVID vaccination is required.