Info Security Senior Analyst (Internal Title)

Employment Type: Full Time Location Type: Hybrid

Position Overview

Securian Financial is seeking an experienced penetration tester to join our Cybersecurity Risk Operations team. This role focuses on penetration testing and cybersecurity risk management, requiring excellent communication and collaboration with business stakeholders and third-party vendors. The successful candidate will play a crucial role in enhancing the company’s security posture and guiding risk-informed decisions.

Responsibilities

• Identify targeted systems to meet regulatory requirements, contractual obligations, and higher risk of compromise.
• Oversee and manage the delivery of penetration tests by engaging certified third-party vendors.
• Review and verify penetration test reports delivered by third-party vendors.
• Collaborate with cross-functional teams to ensure that the corresponding support group remediates the identified security vulnerabilities that align with policies and standards.
• Manage day-to-day operations throughout the risk management lifecycle: identifying, analyzing, evaluating, treating, and monitoring.
• Maintain and enhance the cybersecurity risk register.
• Support cross-functional services within the department as needed.
• Embrace and influence a culture of continuous improvement by evaluating, collaborating, and recommending program and service improvement opportunities.

Requirements

• Education: A bachelor’s degree in information security, computer science, or a related field, or an equivalent combination of education and experience.
• Experience: At least 3 years of experience in cybersecurity, with a focus on penetration testing and cybersecurity risk management.
• Certifications: One or more professional certifications such as OSCP, OSCE, GWAPT, GSEC, GPEN, GXPN, PenTest+, and CEH.
• Technical Skills: Proficiency in penetration testing tools and methodologies, as well as a strong understanding of cybersecurity frameworks and standards.
• Problem-Solving: Ability to analyze and interpret penetration test results and recommend remediation strategies.
• Communication: Strong technical skills and understanding of networking and operating systems. Strong written and verbal communication skills, with the ability to collaborate effectively with cross-functional teams and third-party vendors.
• Personal Attributes: Self-disciplined and initiative-taker. Elevated level of diligence, ensuring accuracy and thoroughness in all aspects of the role. A commitment to continuous improvement and staying current with the latest cybersecurity trends and technologies.

Preferred Qualifications

• Experience working in a hybrid work environment, demonstrating the ability to effectively manage tasks both remotely and in-person.

Salary

• (Salary information is missing from the provided text)