Security Operations Analyst Jobs in Iowa (NOW HIRING)

Ultimately, we appreciate the uniqueness of a company where talented professionals work collaboratively in a positive environment - one focused on helping people look forward and plan for the best life possible while providing tools and solutions that make it easier to get there.

Who We Are

What We Do

Responsibilities:

Day to day responsibilities:

• The delivery, management, maintenance and tuning of information security data protection technologies (with focus on DP and DLP platforms such as BigID and Forcepoint)
• Administer and support data discovery, classification, and remediation capabilities across enterprise DP and DLP tooling
• Maintain oversight of information security data protection support functions including policies, operational issues, training,budgetand metrics
• Manage relationships with information security data protection partners (internal Aegon, and external vendors) and provide input into tooling strategy/solutions (e.g., DP and DLP technology)
• Define andmaintainoversight of the information security components of a global cohesive data protection strategy
• Maintain alignment with other global programs and stakeholders including general data governance and privacy
• Drive information security data protection improvements and work towards consistent globally agreed capabilities
• Identify and implement opportunities to automate data security processes using scripting (preferably Python), APIs, and available enterprise tools
• Support the development and enhancement of automated workflows for activities such as data scanning, reporting, onboarding, and remediation

In addition, responsibilities may extend into other information security domains such as:

• Complete research,developmentand implementation of straightforward information security initiatives, including review of policy, program, process, procedural and technologyimprovementsand solutions to ensure they are current and meet business needs.
• Provide input,createsawareness and trainingmaterialsandleadscertain activities, such as hardcopy and online learning content, presentations, pamphlets, electroniccommunications(e.g.,internal blogs).
• Perform certain procedural tasks found within control self-assessments and security exception/waiver processes, such as assessing controls and compliance with standards,assistingin management of exceptionreviewsand recommending action plans.
• Perform certain procedural tasks found within third-party assessments, such as reviewing due-diligence artifacts, supervising tasks, reviewingresultsand recommending outcomes.
• Perform procedural tasks found within other security processes, such as information management,classificationand protection.
• Ability to help employees and contractors understand their role in safeguarding information,technologyandservices.Assistand show where policies,processesand procedures can be found and explain why they should be followed.
• Tracks current and impeding laws, regulations and industry requirements and best practices, such as data protection, data privacy, cybersecurityand information security.Is able totranslate requirements into practicalsolutions.
• Gathers data,analyzesand drafts reports, including department, project, keyindicatorsand dashboards.Assistswith requirements and improvement plans.
• Ability to quickly develop excellent working relationships with peers and key stakeholders, such as business partners, legal, internal audit, risk, and technology specialists.
• Other duties as assigned based on department and organizational needs.

Qualifications:

• Subject matter experts in one or more technologies and their interaction with applications.
• Breadth of knowledge across technology disciplines.
• Ability to convert complex information into simple, explainable solutions.
• Understanding ofcurrent and future business needs met by infrastructure platforms.
• Results-drivenwith a bias towards practical applications.
• Possessesa planningorientation with integrative thinking skills.
• Ability to quickly learn and apply new concepts
• Ability to drive and achieve consensus/support from diverse groups.
• Written and verbal communication skills enabling effective articulation of technology solutions andprocessand procedures to a technical and non-technical audience.
• Demonstrated project management (planning & reporting) and client relationship skills.
• Abilityto lead teams on small to medium projects isrequired.

Preferred Qualifications:

• Four-year Computer Science or related degree, or equivalent work experience.
• Three or more years of related work experience (i.e.DP and DLP solutions).
• Certifications in relevant technologies, methods, or platforms are a plus.
• Experience with automation and scripting (preferably Python) and integrating security tooling via APIs.
• Experience using development tools such as Visual Studio Code and GitHub.
• Experience working in an Agile environment utilizing Scrum and/ or Kanban methodologies, along with Jira and Confluence.
• Demonstrate the key critical behaviors of commitment to task, communication, customer focus, decision making / problem solving, flexibility, tolerance of ambiguity, planning, prioritizing, and goal setting

Front Office:

• Very goodknowledge of Big ID GUI functions and setup details, understanding of data source using correlation set, Ability to coordinate with BU on setup and use of correlation sets, Very good understanding of data field types within correlation set, Very good knowledge of DSAR Application
• Very goodunderstanding Big ID policy setup, Very good understanding of policy impact within Big ID Apps vs Core, Knowledge of setup details for policies (triggers, thresholds, connections to relevant Apps, etc.), May requiresRegExexperience, Ability to translate BU requests into policy setup requirements

Back Office:

• Very goodknowledge of classifier setup within Big ID, Good knowledge of Big ID GUI functions, Ability to translate BU requirements intoRegEx, ExtensiveRegExexperience- may require data scientist