Information Security Analyst I

SUMMARY: At DOCOMO PACIFIC, we thrive on bringing people closer to what matters most. Through unmatched customer experiences, empowered associates, and innovation, we shape the future.
Rooted in celebration, excellence, respect, trust, communication, and family, we embrace Ina'fa'maolekworking together for the greater good. Here, connection, progress, and opportunity come together.
Joining our team means embracing collaboration, keeping an open mind, and committing to growth as we build a brighter tomorrow.

The Information Security Analyst works as part of a team responsible for the development, maintenance and compliance of the corporate-wide information security policies, programs and standards.

This position entails providing technical assistance and expertise in designing, assessing, and testing security components to protect against inside and external threats.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• The Information Security Analyst provides support to the Chief Financial Officer (CFO), Chief Security Officer (CSO), Chief Information Security Officer (CISO) and Security Program Manager in managing all aspects of the information security program at Docomo Pacific, and performs other duties as assigned.
• He/she assists Information Security Analyst II and Security Specialist with risk and technical vulnerability assessments, data classification, attack and penetration analysis, policy compliance and communications.
• The role also involves implementing processes to protect data confidentiality, integrity and availability, as well as maintaining the technical mechanisms that enable these controls.
• The Information Security Analyst is responsible for identifying process risks, weaknesses, and controls, making recommendations and plans to address vulnerabilities. He/she is also responsible for identifying compliance deficiencies and incidents.
• The analyst evaluates new products, service offerings, and new internal applications to ensure that information assets are handled in accordance with laws, regulations, and organizations information security policies and standards.
• The analyst actively participates in the daily coordination and remediation of all security incidents and security related tasks.
• He/she is responsible for monitoring and ensuring that end-users adhere to information security policies, standards and best practices.
• The analyst is also responsible for the compilation and analysis of data for proper reporting and metrics for the CSO and CISO.
• Records and maintain lists of approved applications, approved third-party vendors, and user access and security.
• Work as a team member with Security, and IT technical staff to ensure connectivity and compatibility between systems.
• Documents system problems and resolutions for future reference.
• Provides training sessions and workshops on system processes as needed.
• Interface with HR for company-wide Security trainings
• Management of company asset management tool

COMPETENCY:

To perform the job successfully, an individual should demonstrate the following competencies.

• Design Demonstrates attention to detail and strives for excellence.
• Problem Solving Identifies and resolves problems in a timely manner.
• Interpersonal Skills We bring energy and passion to our work and always aim to be respectful and communicate openly with team members and other departments.
• Written Communication Able to read, write, and interpret written information while being reliable and transparent.
• Safety and Security Observes safety and security procedures; determines appropriate action beyond guidelines; reports potentially unsafe conditions; uses equipment and materials properly.

QUALIFICATIONS:

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodation may be made to enable individuals with disabilities to perform essential functions.

NECESSARY KNOWLEDGE/SKILLS/ABILITIES:

• Information Security Analysts a required to either hold a bachelors degree in computer or information sciences, Cybersecurity, or other similar field or have appropriate related experience obtained by job functions and additional security subject matter training.
• The information Security Analyst should have 5 years of Information Technology experience.
• The analyst must have a working knowledge or US regulatory compliance requirements, NIST standards, and security frameworks such as Cyber Security Framework, ISO, SOX and PCI DSS.
• The analyst must have superior verbal and written communications skills to communicate with all associates in the company as well as executives and departmental management.
• Understanding of technical aspects of system integration in a mixed technology environment.
• Understanding of common services (web, mail), protocols (SSH, VPN, SFTP, DNS), Microsoft365, KnowBe4, Atlassian Jira Service Desk, and other architectures (enterprise and cloud).

NECESSARY TRAITS:

• Spirited personality
• Ability to work well in a team setting with a diverse group of individuals.
• Understand role within team but take initiative.
• Ability to work under pressure but maintain a calm and approachable demeanor.
• Must be a self-motivated individual that is empowered to make decisions as required.

EDUCATION AND/OR EXPERIENCE

• High school diploma or general education degree (GED) required.
• Information Security Certifications, from accredited bodies, are required. At a minimum, the Certified in Cybersecurity professional certification from ISC2. A Certified in Information Systems Security Professional (CISSP) certification from ISC2 is preferred.

COMMUNICATION SKILLS:

• Ability to read and interpret documents such as security rules, operating and maintenance instructions, and procedure manuals.
• Ability to effectively communicate complex, technical requirements to an audience that may not have a technical background. These communications may be in meetings, training, presentation, or one on one settings.
• Ability to write routine reports and correspondence.
• Ability to speak effectively before groups of employees of the organization.
• Ability to converse professionally and with empathy with an emphasis on owning and solving issues whilst building excellent rapport.

OTHER QUALIFICATIONS:

• KnowBe4
• Jira Service Desk

WORK SCHEDULE:

This position is a standard full-time role and during select times individuals will be asked to work a flexible schedule based on department and company needs.

PHYSICAL DEMANDS:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. While performing the duties of this job, the employee is regularly required to use hands to finger, handle, or feel objects, tools, or controls; reach with hands and arms; talk, hear, stand, walk, and sit. The employee is occasionally required to crouch, kneel, balance, bend/stoop, climb, push/pull objects and drive. The employee must be able to lift up to 25 pounds regularly and up to 50 pounds occasionally. Specific vision abilities required by this job include close vision, color vision, distance vision, peripheral vision, depth perception, and the ability to adjust focus.

Docomo Pacific is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.