Information Security Analyst - Bozeman

Job Description

The Information Security Analyst position within the Information Security is responsible for performing many of the standard daily, weekly, monthly, and annual tasks required for information security audit and compliance. The position provides support, collection and analyses of data for RFP’s, internal, client and 3rd party audits. The position also provides support for information security’s role with clients, auditors, and Zoot internal customers.

Additional responsibilities include documentation collection, updating and tracking, coordination and support of Information Security activities, projects and security tasks.

The Information Security focuses on the compliance of Zoot’s Information Security Program, which includes creating, enforcing, auditing, and promoting company policies, procedures, standards, audit framework and guidelines.

• Support, gather and analyses for all internal, client and 3rd party audits.
• Support, gather and present information for 3rd party audits, RFP’s, including administering JIRA tickets, data collection and tracking, and analyze/interpret audit requests to determine appropriateness of what to share.
• Understand and interpret Zoot required audit frameworks (HIPPA, HITRUST, PCI, SSAE
  18, etc.).
• Perform Information Security log reviews and analyze to determine compliance with policies and procedures.
• Perform Information Security tasks, such as policy compliance, media inventory, destruction, and reconciliation.
• Coordinate scheduling of Zoot resources (personnel, hospitality, and meeting logistics) with on-site client visits and 3rd party audits.
• Drive the security document annual review process, update documentation as needed and ensure changes are tracked.
• Coordinate and track internal remediation and work with stakeholders to determine appropriate course of action.
• Assist with Information Security owned programs (BCP/DR, Risk Management, BIA, security awareness, Policies and Procedures, Data Retention/Destruction, Incident Response, etc.).
• Determine appropriate response to secondary level security alerts and ensure issues are worked to resolution. Draft incident reports as required.
• Participate in Information Security projects.
• Compliance with and knowledge of Zoot’s Policies and Procedures, Code of Business Conduct, and Employee Agreement.
• Achieve a service-focused culture with emphasis on delivering on-time, high-quality products and services to internal and external customers.

• High School Diploma
• Bachelor's Degree in Computer Science, Information Technology, or related technical field required.
• 3+ years of related professional work experience preferred.
• Or an equal combination of education and experience

All positions at Zoot require the ability to move about inside an office environment which includes the operation of computers and other office productivity machinery and frequently communicates with other employees, clients, vendors, and visitors. This position specifically requires long periods of sitting at a computer workstation.

This position will take place primarily in an office setting. To optimize team performance, the workspace for this position is typically a cubicle setting in an open space environment. It is expected that exempt employees, and specifically this position, regularly and consistently report to work on-site, at Zoot headquarters, during normal business hours. Occasional nighttime and weekend work is required within the position.

This position may occasionally require travel. The Information Security Analyst position is fast paced and ever changing, requiring flexibility, self-initiative, and regular management of changing priorities.

Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job which may include helping others in the same or different departments, may be assigned by supervision. Duties, responsibilities and activities may change at any timewith or without notice.