IT Security Analyst (Temporary Contract)

Are you looking for a career with premium benefits and the potential for growth?

At TKC Holdings, we've created something special, a better place to work and grow. Many employees start just expecting a paycheck but end up with a rewarding career. We provide exceptional training and a clear career path.

We are proud to be a military and veteran friendly employer.

The TKC Holdings, Information Security Analyst assists in all ongoing activities that provide appropriate access to and protect sensitive TKC Holdings and TKC Holdings companies' information (regulatory data, privacy data, cardholder data, intellectual property, and other sensitive business data) in compliance with applicable law, regulations, industry standards, and TKC Holdings' policies and standards. This responsibility is carried out by working with members of the TKC Holdings executives, management, and staff to foster the developmental and operational elements needed to assure appropriate information security, safeguards, and compliance throughout TKC Holdings and TKC Holdings companies. The Security Analyst - Compliance role will be working beside the Information Security Office team providing due diligence, audit coordination, and gathering documentation necessary for creating new policy and procedures while ensuring appropriate security controls that will minimize TKC Holdings' risk posture. This position will help identify, document, and communicate the appropriate security controls and plans to achieve compliance with applicable regulatory requirements.

Essential Functions, Duties, and Responsibilities

• Assist in ensuring TKC Holdings and operations comply with applicable information security laws, regulations, industry standards, and corporate policies.
• Assisting in the developing of security policies and standards that incorporate regulatory requirements, industry standards, and best practices applicable to all TKC Holdings companies and operations.
• Supporting regulatory compliance efforts and any other security-related projects.
• Administer, manage, and report on the TKC security awareness program.
• Assist in verifying third-party vendors' security to determine the level of risk to TKC Holdings.
• Assist with creating and maturing sound security architecture for the group.
• Work with third-party relationships as appropriate for security audits or regulatory compliance.
• Participate with IT to ensure security policies and standards are adhered to.
• Contribute to the development of new security standards.
• Assist in risk assessment activities within the company for new projects or major changes to existing technology.
• Conduct investigations of breaches to IS policy, standards or other IS-related incidents and reporting findings to Information Security Office management and Executives.
• Assist with the development and continuous re-assessment of the risk acceptance for information security in the business.
• Maintain industry awareness by regularly reviewing industry news and events.
• Perform day-to-day tasks as it relates to the Information Security Office team.
• Other duties as determined by the needs of the business.

• Bachelor's degree in Computer science, Information Systems, Compliance experience or related field preferred or equivalent combination of education/experience.
• Security+, Network+, SSCP, GSEC, or other security certification desired.
• Familiarity with PCI-DSS requirements and applicability.
• Familiarity with SOC2 compliance and reporting.
• Ability to effectively communicate security-related concepts to a broad range of technical and non-technical professionals.
• Ability to communicate directly with regulators or assessors when needed.
• Strong written and verbal communication skills.
• Familiar with security systems including SIEM / log collection; vulnerability scanning and reporting; firewalls, Active Directory / Group Policy, and end-point protection.
• Familiarity with implementing and following industry security frameworks (NIST, ISO17799/27001, COBIT or CIS Critical Security Controls) is desired.
• Ability to maintain security documentation and manuals.
• Strong organizational skills with the ability to follow through and complete assigned tasks within a designated timeframe.
• Experience with GRC tools is a plus.

TKC Holdings, Inc. offers comprehensive benefits to all regular-full time employees:

• Medical w/prescription coverage
• Benefit Credit received when enrolled in a TKC medical plan, to help offset your benefit costs. Benefit Credit of $750 annually, will be divided evenly among your paychecks throughout the Plan Year.
• Dental
• Vision
• Basic Life and Basic Accidental Death and Dismemberment Insurance
• Short Term Disability
• Long Term Disability
• Voluntary benefits that can be selected to create the right package for you

TKC also understands the importance of work life balance and planning for the future. To help with both of these, employees are eligible for paid time off and a Company Match for the 401(k) Retirement Savings Plan. We now also offer DailyPay providing you immediate access to earned wages.

Equal Employment Employer as to all protected groups, including protected veterans and individuals with disabilities.

We maintain a drug-free workplace.

A copy of our Privacy Policy and CA Employee Privacy Notice can be found here: https://tkcholdings.com/privacy-policy-108