Job type full-time
Full job description
At benefitfocus, our technology is changing the way the world thinks about healthcare and benefitsWe provide insurance carriers, employers, consumers and government entities cloud-based technology to shop, enroll, manage and exchange benefits informationTo be at the forefront of software technology, our strategy is simpleWe hire the best and brightest to tackle the toughest challenges in the industry and create software that is making a positive impact in the lives of millionsOne of the positions we are currently recruiting for is an information security analyst to join our cybersecurity team.
Responsible for customer security assessments and questionnaires
Manage third party assurance reviews of our vendors
Support rfp’s as it relates to security and privacy
Support the business by responding timely to questions pertaining to security practices, policies and controls
Participate in department projects as requested
Other duties as assigned
Prefer 2 years’ experience in security role or independently managing customer security assessments and questionnaires
Knowledge of information security and technology best practices, regulations, and regulatory trends especially as it pertains to auditing and control testing of information security programs.
Prior rfp experience and supporting customers security assessments and questionnaires
Prior experience managing or auditing third party vendor assurance
Prior experience leading security governance activities
Prior experience leading continuous monitoring activities and supporting various risk assessments
Demonstrated organizational and project management skills• excellent interpersonal and communications skills.
Self-motivated and results oriented.
Demonstrated track record dealing well with ambiguity, prioritizing needs, and delivering measurable results in an agile, fast-paced environment.
Establish and maintain good relationships with key business and external audit partnersLeverage specialized knowledge and skills, providing management with insight into areas of cyber risk
Proficient at microsoft office, various grc, control monitoring and cybersecurity toolsSkills: • you are a critical thinker who seeks to understand the business and its control environment.
You believe insight and objectivity are core elements to providing assurance on the effectiveness and efficiency of benefitfocus’ governance, risk management, and internal control processes.
You possess a relentless focus on quality and timeliness.
You adapt to change, embrace bold ideas, and are intellectually curiousYou like to ask questions, test assumptions, and challenge conventional thinking.
You develop influential relationships based upon shared risk objectives and trust to deliver outstanding business impact and elevate the information security assurance value proposition.
You’re a firm believer that a rich understanding of data, innovation, and technology will only make you a better in your role and desire to consistently further your technical expertise.