IT Controls & Internal Compliance Analyst
Company Description
Zayo provides mission-critical bandwidth to the world’s most impactful companies, fueling the innovations that are transforming our society. Zayo’s 133,000-mile network in North America and Europe includes extensive metro connectivity to thousands of buildings and data centers. Zayo’s communications infrastructure solutions include dark fiber, private data networks, wavelengths, Ethernet, and dedicated Internet access. Zayo serves wireless and wireline carriers, media, tech, content, finance, healthcare and other large enterprises.
The Cyber Security Analyst is responsible for planning and implementing security measures to protect computer systems, networks, and data at Zayo. This role manages the Governance, Risk and Compliance function at Zayo; ensuring Zayo's security program is effective and evolving the maturity of the security program. In addition, this role will be responsible for Zayp's Vulnerability Management program; keeping Zayo corporate and production assets safe and protected from discovered vulnerabilities. A Security Analyst IlI at Zayo should be a technical resource for other team members to reference. A Security Analyst IlI should be proactive and a technical lead for the team. This includes, but is not limited to, architecting the plan for the associated areas of ownership, finding technical resources to implement the milestones from the areas of ownership, and ensuring that the vision of the associated area is fulfilled. Zayo expects all team members to be self-starters and to be able to tackle various areas within the corporate security program using their technical expertise and/or available resources in order to manage and mitigate any potential security risks.
Responsibilities
Ensure that corporate security policies and controls are complied with and integrated into areas of ownership
Perform scanning, assessments, and risk mitigation of Zayo Corporate networks, systems, and services.
Support, enhance, and create automation for security monitoring and alerting.
Manage and support security applications.
Provide recommendations and standards for securing systems and services using industry standards for governance and risk.
Participate in and provide security awareness training globally
Preferred Qualifications
3-5 years’ of practical experience in a Security Analyst or Security Administrator role
Experience in network security technologies such as firewalls, IDS/IPS, content filtering, DDoS mitigation, Data Loss Prevention, Network behavior monitoring and SIEM report generation
Experience administering endpoint protection including anti-virus, host IDS, and sandboxing
Experience with technical concepts like regular expressions, data normalization, coding, scripting, and correlation
Experience choosing and administering open source security and network solutions
Working knowledge of security frameworks and governing bodies such as the International Organization for Standardization (ISO) and the National Institute of Standards and Technology (NIST)
Preferred Skill Set
Excellent written and oral communications
Excellent problem-solving skills and ability to offer multiple solutions to technical and operational support challenges
Ability to document detailed procedures of the relevant security environment
Ability to execute and define the vision for the areas of ownership assigned within the Security organization
Can understand high level security risks, governance, and compliance and apply this to the level of effort required to remediate the risk
Can understand the technical aspect and the business aspect of choosing security solutions
Can document and define the high level architecture for security best practices and can explain security architecture to non-technical users
Willingness mentoring junior staff members
CO pay range: $75,500 - $110,700
Benefits, Rewards & Wellness
Excellent Health, Dental & Vision Insurance
Retirement 401(k) Savings Plan
Fitness membership discounts
Generous paid time off policy including paid parental leave
Please note, in accordance with Zayo's commitment to providing and maintaining a workplace free of recognized hazards, all U.S. and Canadian employees and any employee, vendor, customer, or visitor who enters a Zayo office or facility in the U.S. and Canada must be fully vaccinated against COVID-19 and provide proof of such vaccination. If you are hired by Zayo, you will be required to provide proof of vaccination or have a valid religious or medical reason not to be vaccinated.