TransCore (TRN), a subsidiary of Roper Technologies, Inc. (NYSE: ROP) is seeking a full time Senior Information Security Analyst to join our team in Orlando, FL.
Job Summary: The Senior Information Security Analyst will envision, propose, and support innovative and compelling strategic-focused solutions, collaborate with technical staff on programs to identify and assess capabilities and performance in support of business growth, project support, and operational excellence.
Essential Duties and Responsibilities include the following. Other duties may be assigned.
Define the solution and technical approach for new Information Security related initiatives. Solutions may include full life cycle activities, encompassing requirements, design, development, deployment, and operational support such as, Vulnerability Management.
Work with the project support teams and the Corporate Information Security Leadership team, as well as other internal and external stakeholders to define key requirements, challenges, and needs related to Information Security initiatives.
Support project support leaders on all solutioning sessions and creates written and graphical content to incorporate into compelling and winning proposals as needed.
Assist in developing estimates for all costs for labor, material, and other expenses required for the proposed solutions.
Lead the development of the overall solution, including solutioning sessions with internal and external teammates, as well as internal and external technical subject matter experts.
Support identification of partners and teammates to support Information Security efforts.
Present technical solutions both at internal gate reviews, solutioning workshops, and in oral presentations to customers, if required.
Provide leadership and strategic guidance during the solution development process to ensure the gap is bridged between our customers challenges and the benefits available from Information Security solutions and services.
Interface with Program Managers, and Corporate Information Security leadership team to ensure that corporate experience, best practices, products, and capabilities are leveraged correctly.
Research technical environment including technology trends, best practices, partnerships, and capabilities to ensure proposed solutions match business trends.
Participates and contributes to the design, planning, implementation, and maintenance of the Information Technology infrastructure that supports the Projects’ operations.
Participate in the development, monitoring and enforcement of Information Security policies, processes, standards, guidelines, and methodologies to maintain compliance with policies and procedures where applicable.
Review, recommend, and oversee Information Security vendors as part of a Vendor Risk Management approach to third party vendors.
Assists with proposal production.
Regular working days M-F, 8am-5pm. On calls, night and weekends occasionally may be required.
Required Bachelor's degree with 7 years of demonstrated experience in the design, operation, testing, and maintenance of complex information security systems;
Preferred Master’s degree with 5 years of demonstrated experience in the design, operation, testing, and maintenance of complex information security systems;
Consideration given to candidates with an Associate degree and 10 years of demonstrated experience in the design, operation, testing, and maintenance of complex information security systems.
Required Skills and Knowledge:
Experience and knowledge of US State and Federal Government environments, regulations, standards, and processes, such as, PCI, SOC, SOX, PII, Governance Risk and Compliance (GRC) best practices such as NIST CSF, CIS 20, NIST 800-53 and PCI.
Strong creative thinking, problem solving, planning, time-management and organization skills to balance and prioritize work.
Able to perform tasks within strict timelines with little or no oversight.
Strong and proven team leader with human relations skills to build teams and develop collaborative solutions with management, business development, and technical staff.
Strong written and oral communication skills.
Ability to develop detailed cost estimates and models for large-scale and complex Information Security solutions.
Comfortable working with ambiguity.
Strong skills at identifying, assessing, and managing risks related to business opportunities and solutions.
Ability to create and maintain formal and informal networks with fellow employees, partners, industry, customers, and technical communities.
Desired Skills and Knowledge:
Knowledge and experience with Identity Management, Microsoft Azure, Managed Detection & Response, Vulnerability and Patch Management, Frameworks such as, (NIST CSF, CIS 20, NIST 800-53)