Sr. Cyber Security Analyst
Lake Zurich, IL

Job Description

Position Summary

Achieve. Create. Collaborate. Organize.

Essential brands. Innovative products. Smart investment. Winning team. This is what you will find at ACCO Brands. We are passionate about building a culture that is committed to the success of our employees. If you are looking for an organization that offers rewarding opportunities and is dedicated to team orientation, learning and development, and flourishes with success, we invite you to be a part of building our company for the future.

ACCO Brands is seeking a talented individual to join the Information Technology team as a Sr. Cyber Security Analyst at the Lake Zurich, IL headquarters.

The Sr. Cyber Security Analyst reports to the Vice President Global Cybersecurity. This role will include leading cybersecurity control and process improvement activities, being a key member of the security incident response team, driving special projects and other cyber security related activities.

This position will serve as the senior analyst/subject matter expert on all cybersecurity matters, technical and otherwise, involving the security of classified information systems under their purview. This person will perform assessments of systems and networks within the networking environment and will identify where those systems and networks deviate from acceptable configurations or policy. This is achieved through passive evaluations such as analysis from security system data logs and active evaluations such as vulnerability assessments. The position will include support of process, analysis, coordination, security documentations, as well as investigations and emerging technologies. Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.

Duties and Responsibilities:

* Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors.
* Performs in-depth analysis of security issues and/or vulnerabilities. Ensures compliance to audit, regulatory, and legal requirements. Builds and maintains effective relationships with peers and internal business partners. Creates effective controls to address security concerns.
* Perform daily cadences, which includes monitoring and reviewing of cybersecurity systems, investigating events and incidents.
* Recommend additional security solutions or enhancements for existing IT solutions to improve overall enterprise security.
* Assist at Implementing and maintaining a formal IT security program and security policies.
* Identifies potential threats and risks and makes recommendations to mitigate these issues.
* Participate in the planning and design of enterprise security strategy, processes and procedures.
* Lead security related projects as applicable.
* Assists in maintaining compliance with various compliance programs, such as PCI, GDPR and Sarbanes-Oxley.
* Manage the remediation and mitigation of security violations to determine if the network environment has been breached, assess the impact and preserve the evidence.
* Maintain and enhance the security education, training and awareness program for the organization.
* Manage, maintain and execute a continuous incident monitoring program.
* Perform control validation and remediation validation to ensure controls comply with security policies, procedures and technical requirements.
* Assist and partner with IT teams at optimizing and enhancing security tool deployment and continuous monitoring capabilities.
* Create weekly metric reports to demonstrate control effectiveness using monitoring tools.
* Lead and assist with incident response activities.
* Provides project support for both IT and business initiatives requiring security posture and control improvements.
* Perform security risk assessments, share results and recommend a remediation approach.
* Analyze system performance for potential security problems. Prepares system security reports by collecting, analyzing and summarizing data trends.
* Perform penetration tests and vulnerability assessment on internal applications and external facing websites.
* Collaborate with other Teams to ensure appropriate security incident management and threat response processes are followed.
* Perform root cause analysis and create reports based on outcomes of incident investigations.
* Create, deploy and manage a vulnerability management program, schedule, plan and policies.
* Expected to stay up-to-date on the latest intelligence, including hacker methodologies or the kill chain, in order to anticipate security breaches.

Position Qualifications

Qualifications:

* Bachelor's degree in information security (or associated discipline) plus at least 3 years of experience working with vulnerability management; or equivalent combination of education and experience.
* Broad knowledge of networking, infrastructure, and application technologies, including SIEM (Security Incident Event Management) approach to log management.
* General understanding of PCI DSS requirements and controls.
* Security certification is preferred (CISSP, CISA, CEH).
* Work both independently and as part of a team at all levels and across all business units.
* Demonstrate an understanding of business processes, internal control risk management, IT controls and how they interact together.
* Demonstrate solid knowledge of information security risk and countermeasures.
* Specific technical knowledge in Office 365, Checkpoint, Linux, Internet technologies, Networking technologies and Encryption technologies.
* Experience interacting with a Managed Security Service Provider (MSSP) a plus.

About Us

You know our brands. You love our brands. You just may not know they are ours.

If you have touched a Five Star® notebook, a Swingline® stapler, a Quartet® dry erase board, or a Kensington® computer mouse, you have touched part of ACCO Brands Corporation. With annual revenues of nearly $2 Billion, ACCO Brands (NYSE: ACCO) designs, markets, manufactures and sells branded academic, consumer and business products globally. The power of our brands, our unmatched global customer reach, and our strategic market strengths put us in a position to achieve global leadership and growth. We're proud of our long history of industry leadership and innovation and are focused on delivering exceptional value to our customers by providing unique, cutting-edge, branded products.

Apply and build your future with ACCO Brands.

More information about ACCO Brands, the Home of Great Brands Built by Great People, can be found at www.accobrands.com.

Equal Opportunity EmployerACCO Brands is an equal opportunity/affirmative action employer. The Company provides equal employment opportunity to all persons without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.