Information Security Analyst

　　Apply now »

　　Date:Feb 7, 2024

　　Location: Portland, OR, United States

　　Company: Oregon Tool

　　Work Location: Portland, OR

　　Go one better, together.

　　We’ve built something we’re extremely proud of, and we think it’s time you became part of it. Working at Oregon Tool, Inc., you’ll build your career and do your best work while contributing to the whole of the company. We're for those who lean into challenges and expect that same attitude from the people around them. We’re a goal-oriented organization that’s firmly committed to creating opportunities for Team Members’ talents to shine and inspire the individuals around them so that we all win together.

　　At 2,400 Team Members across the globe, you're more than just a link in a chain. From new products, programs, and business units, Oregon Tool, Inc. gives you the space to make systemic change within our business. How will you make your mark?

　　HOW YOU MAKE AN IMPACT: 

　　As an Information Security Analyst (ISA), you are responsible for maintaining the corporate wide information security management program to ensure that information assets are adequately protected. You would assess and manage the information security environment, implementing new technologies, and serving as a communication liaison with the global IT team.  As an Information Security Analyst, you will proactively work with business units to implement practices that meet defined policies and standards for information security. You will also oversee a variety of IT-related risk management activities.

　　THE DETAILS: 

　　Assist with the creation and management of security strategies, technology and capability roadmap, policies, and processes.

　　Continuous assessment and impact of current technology architecture for vulnerabilities, weaknesses and for possible upgrades or improvements

　　Oversee information security audits performed internally by the organization or third-party personnel.

　　Serve as a security focal point of contact for the IT team and the customer or organization.

　　Communicate information security goals and new programs effectively to gain alignment with IT leadership.

　　Manage Team Member cybersecurity awareness training program.

　　Coordinate, detect, measure, and report on the technical aspects of security management and operational components of incident management.

　　Manage outsourced vendors that provide information security functions for compliance with contracted service-level agreements.

　　Manage the day-to-day activities of threat and vulnerability management, identify risk tolerances, recommend treatment plans and communicate information about residual risk.

　　Ensure audit trails, system logs and other monitoring data sources are reviewed periodically and comply with policies and audit requirements.

　　Design, coordinate, and oversee security-testing procedures to verify the security of systems, networks, and applications, and manage the remediation of identified vulnerabilities.

　　Liaise among internal teams and external vendors to ensure compliance and a strong security posture.

　　Consult with IT staff to ensure that security is factored into the evaluation, selection, installation and configuration of hardware, applications, and software.

　　Recommend and coordinate the implementation of technical controls to support and enforce defined security policies.

　　Research, evaluate, design, test, recommend or plan the implementation of new or updated information security hardware or software, and analyze its impact on the existing environment; provide technical and managerial expertise for the administration of security tools.

　　QUALIFICATIONS & SKILLS: 

　　A bachelor's degree in information systems or equivalent work experience; information security emphasis preferred.

　　One or more Information Security Certifications (i.e. CISSP, CISA, CISM, CBCP, or GIAC)

　　A minimum of 5 years of IT experience, with 3 years in an information security role

　　Proficiency in Microsoft Office suite (Outlook, Word, Excel) and data management software (SAP preferred)

　　Knowledge and understanding of relevant legal and regulatory requirements, such as National Information Assurance Policy, Cloud Security Policy, etc.

　　A strong understanding of the business impact of security tools, technologies, and policies

　　Analytical skills, and high-level problem-solving skills that allow for effective and efficient resolution to many complex information security issues

　　Able to complete responsibilities in a timely, professional, and quality manner.

　　Project management skills in budget management, scheduling, and resource management

　　Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals; collaborative and effective team player and able to express oneself clearly and in technical and non-technical terms to a globally dispersed team.

　　Ability to translate specific goals into action and follow through to achieve goals and take initiative, seek, and act on opportunities to improve organization performance.

　　You do not need to possess 100% of these qualities to be considered.

　　AVAILABILITY:

　　This is a hybrid role with a combination of onsite and remote workdays. You must be available to work onsite as required by job.

　　For individuals assigned and/or hired to work in Washington, Colorado, Nevada, California, New York, New Jersey, Rhode Island, and Connecticut, Oregon Tool is required by law to include a reasonable estimate of the compensation range for this role. The disclosed range estimate has not been adjusted for the applicable geographic differential associated with the location at which the position may be filled. At Oregon Tool, it is not typical for an individual to be hired at or near the top of the range for their role and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is $86,100.00 - $136,100.00.

　　WHAT WE OFFER:

　　Medical, Dental, and Vision Benefits available on day one (no waiting period)

　　401k matching (100% of first 3%, 50% of next 3% = 4.5% match on 6% contribution)

　　Earn up to 120 hours vacation during your first year of service

　　One paid Community Involvement Day available per calendar year

　　Global company with small company feel

　　Casual work attire

　　Onsite Fitness center

　　Public Transit access

　　WHO WE ARE:

　　Oregon Tool, Inc. is a global, premium-branded, aftermarket-driven precision-cutting-tool platform. At Oregon Tool, Inc., it is our goal to create, cultivate and sustain a global, inclusive culture, where differences drive innovative solutions to meet the needs of our employees and customers. We invite and encourage applications from all skilled individuals, including from groups that are traditionally underrepresented, not just because it’s the right thing to do, but because it makes our company #SharperTogether.

　　To learn more about our company and history visit us at: www.oregontool.com

　　Oregon Tool, Inc. will only employ those who are legally authorized to work. Any offer of employment is contingent on a background investigation and drug screen. Oregon Tool, Inc. does not discriminate based on sex, race, color, religion, age, marital status, national origin, citizenship, disability, veteran status, or any other status protected under law. 

　　During the application process we will not ask for or collect any confidential, proprietary, or sensitive personally identifiable information (e.g., date of birth; driver’s license number; or credit card, bank account or other financial information). If you submit such information, you do so at your own risk, and we will not be liable to you or responsible for consequences of your submission. This notice should not be construed as an offer of employment or creating any terms of employment. 

　　#LI-RW1