Security and Privacy Analyst Budapest, Hungary or Remote
Security and Privacy Analyst Description
Job #: 79158
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.
No less important is the safety, well-being, and experience of our applicants. Therefore until further notice, all EPAM employment interviews will be conducted remotely. Our recruitment professionals and hiring managers are standing by to ensure a robust and engaging virtual candidate experience. We look forward to speaking with you!
We are looking for a self-dependent and proactive Security and Privacy Analyst colleague to join our team in Budapest.
The purpose of the Security and Privacy Analyst is to support customers to identify, develop and implement industry standards and regulatory guidelines for information security to minimize and manage the risk of compromise of sensitive business systems. To analyze, evaluate, and document customer requirements. Analyze controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures, and standards to validate maintenance of secure configurations. To provide highly skilled technical and information security expertise for development and implementation of the information security risk management program for customers.
No less important is the safety, well-being, and experience of our applicants. Therefore until further notice, all EPAM employment interviews will be conducted remotely. Our recruitment professionals and hiring managers are standing by to ensure a robust and engaging virtual candidate experience. We look forward to speaking with you!
DESCRIPTION
We are looking for a self-dependent and proactive Security and Privacy Analyst colleague to join our team in Budapest.
The purpose of the Security and Privacy Analyst is to support customers to identify, develop and implement industry standards and regulatory guidelines for information security to minimize and manage the risk of compromise of sensitive business systems. To analyze, evaluate, and document customer requirements. Analyze controls to ensure that specific security and compliance requirements are met through the verification of documented processes, procedures, and standards to validate maintenance of secure configurations. To provide highly skilled technical and information security expertise for development and implementation of the information security risk management program for customers.
Responsibilities
- Develop and participate in implementation of customers initiatives focused on the reduction of technology risk, governance and compliance to policies and external regulatory compliance. Ensure that security strategies meet the customers security goals/objectives and standards to maintain a safe and secure environment
- Support customer to implement processes, such as GRC (governance, risk, and compliance), to automate and continuously monitor information security controls, exceptions, risks, testing. Develop reporting metrics, dashboards, and evidence artifacts
- Evaluate risks and develop IT security standards, procedures, and controls to manage risks. Improve customer’s security positioning through process improvement, policy, automation, and the continuous evolution of capabilities
- Evaluation information security threats and their impact on customers IT environment
- Perform and investigate internal and external information security risks and exceptions assessments. Function as an auditor for the risk management process
- Ensure appropriate risk mitigation and control processes for security incidents are implemented
- Assess vendors for compliance with contractual agreements and compliance requirements
- Document and report control failures and gaps to customer stakeholders. Provide remediation guidance and prepare management reports to track remediation activities
- Support customer to corporate with external and internal audit processes
- Support customer to manage ISMS in accordance with the international standards
Requirements
- Bachelor’s degree in a relevant field (Computer Science, Software Engineer, Security) or an equivalent training, and experience
- Strong understanding of security risk management frameworks and standards like: ISO27001, SOC, SOX, HIPAA, PCI DSS, etc
- Understanding IT security principles, techniques, and technologies
- Experience performing information security audits or risk assessments
- Skills in documenting risk and compliance activities
- Developing and implementing enterprise governance, risk, and compliance strategy and solutions
- Good analytical and troubleshooting skills
- Ability to effectively communicate in English, both in writing and verbally
We offer
- Dynamic, entrepreneurial, high speed, high growth corporate environment
- Diverse multicultural, multi-functional, and multilingual work environment
- Opportunities for personal and career growth in a progressive industry
- Global scope, international projects
- Widespread training and development opportunities
- Unlimited access to LinkedIn learning solutions
- Competitive salary and various benefits
- Sport and social teams support, recreation area, advanced CSR programs
