You are viewing a preview of this job. Log in or register to view more details about this job.

Associate Information Security

LogicSource
Email

Associate, Information Security and Compliance

 

LogicSource is a collective of strategic sourcing and procurement professionals that provides best-in-class solutions and technologies for our clients. Partnering alongside Fortune 500 companies, our goal is to inspire strategic partnerships while establishing strong execution to induce cost savings initiatives. We bring innovative solutions with a transparent business model that sets us apart. Learn more about us at www.logicsource.com.

Reasons why you’ll love it here:

  • An amazing culture with a team that supports one another, the opportunity to make a direct impact and have fun along the way!
  • We are experiencing rapid growth - come grow along with us!
  • Competitive compensation and a performance-driven culture that rewards results.
  • We work hard but understand the need for balance offering unlimited and flexible PTO.
  • Phenomenal health, dental and vision benefits for you and your family (and we pay almost 90% of the premiums). 
  • Additional options for employer contributions to HSA, 401k match, dependent care FSA, short-term/long-term disability, life insurance and more.

Position Summary: 

We have an immediate opening for a full-time Associate, Information Security and Compliance in our Westport, CT headquarters. You will be a key member of our Information Security team, reporting to the Manager, Corporate Information Security and Compliance, responsible for all aspects of our computing and networking environment. This role will assist in supporting and maintaining the organization's information security and compliance programs, ensuring the protection of sensitive data and adherence to regulatory requirements. This individual will work closely with senior members of the team to monitor and improve security measures, assist with compliance audits, and support day-to-day security operations. This is an excellent opportunity to gain hands-on experience in the ever-evolving field of information security and compliance.

Job Responsibilities: 

  • Assist with monitoring and tracking the organization’s compliance with relevant industry standards.
  • Support compliance audits, assessments, and the preparation of necessary documentation.
  • Maintain records of compliance-related activities, including audits, assessments, and training logs.
  • Help track and manage compliance certifications and their renewal process.
  • Provide support during internal and external audits, including gathering documents, answering audit-related queries, and addressing findings.
  • Document any issues identified during audits and assist in the development of corrective action plans.
  • Assist in the development, updating, and distribution of information security and compliance policies.
  • Help maintain policy documentation and ensure that employees are aware of the latest compliance guidelines.
  • Support the preparation of regular compliance status reports for senior management, tracking key compliance metrics.
  • Assist in performing vendor risk assessments and maintaining documentation.
  • Daily Checks of Security Tools: Assist in the monitoring of security tools, real-time alert monitoring and investigation for escalation 
  • Assist in administrating access control and user management.
  • Participate in the development and delivery of security awareness training for employees.
  • Help maintain internal communication and updates regarding security best practices.
  • Collaborate with IT Team to ensure that security policies and procedures are integrated into IT operation.
  • Support for DevOps by ensuring secure security within the SDLC framework.
  • Assist as needed with the IT and DEV teams to ensure timely patching of systems and remediation of vulnerabilities.

 Education and Experience:

  • Knowledge regarding usage of SIEM tools, endpoint protection and cloud network security. 
  • Support experience in a business environment using Windows and Apple hardware
  • Knowledge of Security Frameworks (SOC 2 Type 2, SIG & NIST CSF)
  • Excellent communication skills, both verbal and written
  • Some experience or internship in information security, compliance, risk management, or IT auditing is preferred but not required 

Travel: This position does not require Travel 

Other Duties This Position Description is not an exhaustive list of duties and responsibilities, and the employee is expected to perform other duties as necessary and assigned. The duties and responsibilities of this position may be modified at any time to meet changing business needs.