onsite
Information Security Analyst - Business Security and Compliance - airliquidehr
Security Engineer
Analyze and strengthen business security posture by managing risk, ensuring compliance with standards such as ISO 27001 and NIST, and supporting vulnerability and cloud security programs.
About the role
Key Responsibilities
- Conduct risk assessments and security reviews for business applications and processes.
- Develop, maintain, and enforce compliance frameworks aligned with ISO 27001, NIST, and internal policies.
- Collaborate with IT and business units to remediate vulnerabilities and improve security controls.
- Monitor and report on security metrics, incidents, and audit findings to senior leadership.
- Support cloud security initiatives, including configuration reviews and continuous compliance monitoring.
Requirements
- 3+ years of experience in information security, risk management, or compliance roles.
- Hands‑on knowledge of ISO 27001, NIST CSF, and GRC tools.
- Experience with vulnerability assessment tools and remediation processes.
- Understanding of cloud platforms (e.g., AWS, Azure) and associated security controls.
- Strong analytical, communication, and stakeholder‑management skills.
Skills
siemiampenetration testing