CyberSec Assurance Analyst
RELX

Philadelphia, Pennsylvania

Posted in IT


This job has expired.

Job Info


Cyber Security Assurance Analyst

Elsevier fuses evidence-based, trusted content and cutting-edge technology and analytics to create a range of innovative digital products for end users in the scientific, academic and medical worlds. Our leading-edge products are used globally to advance science, aid discovery, improve patient outcomes and impact people's lives in a positive manner on a daily basis.

Fundamental to the success of Elsevier's mission is maintaining the integrity of the Elsevier global network and data assets. We now have a new exciting opportunity within the Elsevier's Global Security team for a CyberSec Assurance Analyst. In this impactful role, you will be actively focused on Supplier and Third-Party Management Program, managing the on-boarding and security testing of new acquisitions, participating in security maturity activities, and following up on findings arising out of internal tools and assessments. This is a critical role and the successful candidate will enjoy exposure to the highest levels of the Elsevier Technology and Security organisations.

Key Responsibilities:

  • Participate in risk assessment during the certification and accreditation process (ISO, SOC2).
  • Partner with Security Incident Response, BISO's, Risk Management, Architecture, and Development Teams to close security gaps and mature controls in Elsevier's environments.
  • Prepare reports on findings for management and make recommendations based upon documented findings to reduce risk.
  • Assist in providing effective risk-based remediation plans for issues identified during internal assessments.
  • Ensure all findings and issues have clear action/mitigation/contingency plans defined with named action owners and timelines for completion
  • Manage executive level reporting of findings and remediation activities


Key Skills and experience required:
  • 3+ years prior work experience in information security, governance, or compliance
  • Familiarity with cloud infrastructures, AWS preferred, in how controls are applied: Software as a Service (SaaS), Platform as a Service (PaaS), and Infrastructure as a Service (IaaS) technologies
  • Ability to develop and use metrics/KPIs to assess program performance.
  • Ability to communicate security-related concepts to a broad range of technical and non-technical staff.
  • Experience in systematically performing security assessments and information system audits of network, operating systems, application security, as well as coordinating the auditing of internal processes
  • Ability to think with a control and process mindset. Experience managing risk, security, or control programs, preferably aligned with ISO or NIST standards.

Elsevier is an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. If a qualified individual with a disability or disabled veteran needs a reasonable accommodation to use or access our online system, that individual should please contact 1.877.734.1938 or accommodations@relx.com.

Please read our Candidate Privacy Policy


This job has expired.

More IT jobs


The Baer Group
San Francisco, California
Posted about 3 hours ago

The Baer Group
San Jose, California
Posted about 3 hours ago

The Baer Group
Atlanta, Georgia
Posted about 3 hours ago

Get Hired Faster

Subscribe to job alerts and upload your resume!

*By registering with our site, you agree to our
Terms and Privacy Policy.