This job listing has expired and the position may no longer be open for hire.

Lead Information Security Analyst at UPS

Posted in Transportation 30+ days ago.

Location: Mahwah, New Jersey

Job Description:

Lead Information Security Analyst

We’re the obstacle overcomers, the problem get-arounders. From figuring it out to getting it done… our innovative culture demands “yes and how!” We are UPS.  We are the United Problem Solvers.

About Information Security at UPS Technology:
Our top-notch Information Security team quickly finds and responds to real time threats. These critical-thinkers have a hunger to keep ahead of new exploits and security trends. They protect the vast trove of valuable data that passes through our servers each day. As a part of UPS InfoSec, you’ll continue to uphold our reputation for integrity in this growing and ever-changing field.

About this role:

The Lead Information Security Analyst performs a broad range of complex technical and professional work functions to identify, investigate, analyze, and remediate information security events. Leads security administration and service operations' functions to ensure enterprise integrity against technical and physical risks.  This position determines the effectiveness of security controls, identifies risks and control gaps, and communicates areas for process improvement and solutions through the security governance process.  Monitors Information Services (I.S.) security controls to protect enterprise and information assets. This position facilitates collaboration with other functions to identify security and business solutions.  Guides and trains colleagues to increase skill sets and knowledge.  This position leads work functions to ensure appropriate resource allocation. Maintains current knowledge of developing technologies and applications.  This position leads the development and maintenance of business continuity planning, data, systems, and network security for systems and controls related to their job duties. The Lead InfoSec Analyst is required to lead a Certificate and Key Management team. The team supports Certificate Lifecycle Management and Key Management projects. This includes the onboarding and support of the products purchased to automate and provision certificates throughout the organization.

The Lead Infoormation Security Analyst will lead the team in the development of a Digital Certificate governance process.  The process will cover all types of certificates including but not limited to: code signing, client side, device, SSL, Extended Validation, and more.  Governance will include creating/updating standards, policies and processes for requesting, maintaining certificates, private keys, revoking certificates and best practices for certificate composition (bit-length, tools for generating CSR).  The certificate team is currently researching and testing out a certificate lifecycle management tool.  The Lead Information Security Analyst will present materials to SDGs and others about the new product and will submit the appropriation for purchase.  They will be responsible for on-boarding the tool and setting up the plan for deployment of its various features. The Lead Information Security Analyst requires knowledge of Digital Certificate types, how they are used, and how to create a standard SSL CSR.

Minimum Qualifications:

  • Experience with PKI infrastructure and digital certificate management.
  • At least 5 years of Information Security experience
  • Experience with Cryptography, Information Security Policy Development, Technical Knowledge of Hardware & Software, BC/DR Planning, Data Protection Regulations, Microsoft Office, TCP/IP
  • Must be detail-oriented, multitasking, collaboration, organizational skills, strong communication, presentation skills are necessary for creating standards, policies and materials for communicating to the organization about the changes regarding certificate processing. Self-driven, and eager to consistently learn & improve processes and skills

Preferred Qualifications:

  • Bachelor's degree or related discipline
  • Strong knowledge of PKI infrastructure and certificate use cases

This position offers an exceptional opportunity to work for a Fortune 50 industry leader. If you are selected, you will join our dynamic technology team in making a difference to our business and customers. Do you think you have what it takes? Prove it! At UPS, ambition knows no time zone.

UPS is an equal opportunity employer. UPS does not discriminate on the basis of race/color/religion/sex/national origin/veteran/disability/age/sexual orientation/gender identity or any other characteristic protected by law