Senior Cyber Security Analyst (India)

MCO provides compliance management software that enables companies around the world to reduce their risk of misconduct. Our powerful platform lets compliance professionals demonstrate they are proactively managing the regulated activities of employees, third-party vendors, and other agents of the firm. Available as a unified suite or ?? la carte, our easy-to-use and extensible solutions get clients up and running quickly and cost-efficiently. We have built our passion and proficiency for compliance automation into every product, empowering clients of all sizes to maximize technology to minimize conduct risk.

MCO's Information Security Management System (ISMS) is ISO 27001 certified. This role, as part of our IT & Security Department, reporting to the IT Security Manager, is made up of a team of experienced professionals. You will play a central role in the continuous improvement of information security operations and management of our ISO27001 certified ISMS program.

The most important attributes you will bring to this role are:

• Ability to work largely independently.
• 10 - 15 years' experience in Technology (System and/or Network Administration), Information Security and/or IT Audit (SOC2 or ISO 27001)
• Excellent verbal and written English communication skills.
• A willingness to learn and develop new skills.
• Excellent time management and an ability to prioritize.

Primary Responsibilities:

• Responding to Due Diligence Requests from customers and/or prospects both manually and via the ClearOPS Answer Management System
• Responding to RFP Requests from prospects both manually and via the ClearOPS Answer Management System
• Participation in customer and/or prospect discussions on information security related topics
• Development of artifacts in support of ISO 27001 and SOC2 audit fieldwork
• Work with security tools including (but not limited to) Static Code Analysis, Vulnerability Management, Penetration Testing, Firewalls, SIEM, etc.

  Secondary Responsibilities :

• Internal audits and control reviews in support of the MCO ISO 27001 ISMS based upon the audit plan developed by the IT Security Manager
• Member of the IT Security team acting as a resource to other Technology departments including Architecture, Product Development, Operations, and Engineering
• Other duties and responsibilities as assigned.
Experience and Skills

Experience with the following will be beneficial.

• An ability to effectively communicate with individuals at all levels both at MCO and our customers.
• Excellent analytical, critical thinking, and problem-solving skills
• Strong technical skills (e.g. Office365, Linux, Palo Alto firewalls, Oracle databases, etc.)

  Preferred Skills:

• IT A udit Experience with either ISO 27001 or SOC2 as a participant or SME (Subject Matter Expert)
• Security Certifications (or willingness to obtain) including Security+, CC, SSCP, CISM, CISA, CCSP
• A working knowledge of the software development lifecycle (SDLC) for SaaS applications
• Knowledge of data protection legislation (GDPR, CCPA, etc.)
• A working knowledge of SaaS vendors

Core Aspects of the Role

• Sole Contributor working with IT Security team members in the US and Ireland
• Sole IT Security team member in APAC
• Third member of the IT Security team requiring an ability to handle both technical and administrative (audits, due diligence requests, customer meetings) tasks.