Every day, Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit, debit, prepaid and merchant services. Our worldwide team helps over 3 million companies, more than 1,300 financial institutions and over 600 million cardholders grow with confidence and achieve amazing results. We are driven by our passion for success and we are proud to deliver best-in-class payment technology and software solutions. Join our dynamic team and make your mark on the payments technology landscape of tomorrow.
Summary of This Role:
As a Cyber Security Incident Management Analyst you will coordinate containment, protection and remediation activities for critical cyber security incidents using incident management capabilities/experience. You will identify security risks and exposures, determine the causes of security violations or incidents and suggest procedures to halt future incidents. You will investigate and resolve security incidents and recommend enhancements to improve security across the enterprise. You will develop techniques and procedures for incident response to ensure timely investigation and resolution of critical security incidents.
What Part Will You Play?
Ownership of critical Cyber Security Incident Response Tickets (CSIRTs), with a requirement to investigate and resolve these within specific time frames.
Performs incident handling processes by maintaining knowledge in implementation of containment, protection and remediation activities.
Provides 24x7 on-call incident management support on rotation for critical security incidents.
Manage post-incident activity to include the documentation of root cause analysis for security incidents.
Enhances knowledge of new and emerging threats that can affect the organization's information assets, third party software/solutions, IT configuration changes (including access control requests), and network/system.
Collaborates with vulnerability management and development teams to ensure timely remediation of critical and high vulnerability findings reported through the Bug Bounty Program.
Provides executive level written communication for client inquiries related to security incidents or common vulnerabilities for distribution internally and/or to clients.
Identifies risks based on changes to implementation of ISO (International Organization for Standardization/BSO (Business Services Online); enhances knowledge of PCI(Payment Card Industry)/Logical Security guidelines and models, HIPPA (health insurance portability and accountability act), (GDPR) General Data Protection Regulation, PII (Personally Identifiable Information), and Card personalization.
Participates in creating cost effective solutions for system/application development regarding Information Security processes and concepts in applicable systems and software.
Maintain and follow runbooks for day-to-day incident response activities in line with the corporate security incident response plan (CSIRP)
Works under close supervision to perform day-to-day Information Security functions pertaining to numerous security software products and processes.
What Are We Looking For in This Role?
Relevant Experience or Degree in: Bachelor's degree in Computer Science, Info Security, or related field. Or relevant work experience in a related field.
Typically Minimum 2 Years Relevant Experience with Incident Management and Information Security
Knowledge of network operations or engineering or system administration on Unix, Linux, MAC (Message Authentication Code), or Windows; common security operations, intrusion detection systems, Security Incident Event Management systems, Penetration Testing, Web Application assessment, Secure Coding practices, Cloud Technologies.
Professional certifications CISSP (Certified Information System Security Professional), CISM(Certified Information Security Manager), CISA(Certified-Information-Systems-Auditor), GSEC (GIAC Security Essentials), Network +,Security +, GCIH (GIAC Certified Incident Handler)
Knowledge of industry standard security compliance programs PCI (Payment Card Industry), GDPR (General Data Protection Regulation),SOX(Sarbanes-Oxley), GLBA(Gramm Leach Bliley Act), etc.)
Experience working in Google Workspace and/or JIRA
Matlen Silver is an Equal Opportunity Employer and considers all applicants for all positions without regard to race, color, religion, gender, national origin, age, sexual orientation, veteran status, the presence of a non-job-related medical condition or disability, or any other legally protected status.