We offer a hybrid workplace model with our office based in Chicago, IL. Minimal travel may be required.
Information Security Specialist RESPONSIBILITIES
- Review proposed new systems, networks, and software designs for potential security risks, recommend mitigation or countermeasures, and resolve integration issues related to new system implementations within the existing infrastructure
- Develop and manage an enterprise-wide security strategy and communicate performance to key stakeholders
- Ensure data systems comply with relevant regulations and security standards. Develop measures to protect data privacy and ensure the security of data pipelines and analytics infrastructure
- Lead cybersecurity risk assessments and mitigation efforts and oversee incident management and response planning
- Collaborate with cross-functional teams, including IT, data science, and business units within customer experience teams, to mitigate risk. Guide engineering teams in making informed security decisions on infrastructure, systems, and application design
Information Security Specialist Requirements:
- Bachelor’s degree in Computer Science, Information Technology, Cyber Security, or a related field
- Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM)
- 7+ years of experience in information security and risk management
- In-depth knowledge of IT security frameworks and regulations such as ISO 27001, NIST, and GDPR
- Understanding of CASB, CSPM, and CWPP tools; knowledge of cloud security frameworks, standards, and best practices; experience working with cloud IAM and IaaS, PaaS, and SaaS native security capabilities
- Strong grasp of how business architecture affects cloud security and ability to manage relationships with business teams using cloud technology
- Deep understanding of API security principles, technologies, and best practices (e.g., OAuth, OpenID, REST, SOAP, GraphQL)
- Ability to define and execute the product vision and strategy for API security, aligning with business goals and customer needs
- Must be proficient in one or more scripting languages such as Python, PowerShell, Bash, etc.
- Proficiency in security tools and products, including firewalls, IDS/IPS, SIEM, and vulnerability scanning
- Ability to translate technical security risks into clear, concise, non-technical terms
- Excellent problem-solving skills to address security challenges
- Strong collaboration skills to work effectively with cross-functional teams, including IT, data science, and business units within customer experience teams
- Excellent technical documentation and reporting skills
- Strong ethical standards and integrity
- Knowledge of machine learning in anomaly identification and user behavior analytics
- Experience with security standards for cloud applications, including the implementation of digital solutions
- Experience with network security design and implementation, penetration testing, and vulnerability assessment tools
- Experience overseeing or implementing automation in security engineering
Information Security Specialist Benefits:
- Rate of pay may be adjusted based on the qualifications and experience of the candidate
- Employees enjoy a variety of benefit options for themselves and their families, including two medical insurance options, vision, and dental coverage
- Employees typically pay 25% of the monthly premium cost, while the company covers the remainder
- Coverage options are available on the first day of employment with no waiting period
- Additionally, employees benefit from a 401(k) Investment Plan with company match and a pension plan
- Other optional programs include life insurance, accident insurance, legal insurance, and pet insurance
- Employees may also be eligible for quarterly (hourly) or annual (salary) bonus potential based on performance metrics tied to safety, quality, and productivity
- Paid time off and paid holidays are also provided
If this information security specialist is of interest, please apply below!
Thank you,
Griffin Taylor
Project Manager
LaSalle Network
LaSalle Network is an Equal Opportunity Employer m/f/d/v.
LaSalle Network is the leading provider of direct hire and temporary staffing services. For over two decades, LaSalle has helped organizations hire faster and connect top talent with opportunities, from entry-level positions to the C-suite. With units specializing in Accounting and Finance, Administrative, Marketing, Technology, Supply chain, Healthcare Revenue Cycle, Call Center, Human Resources and Executive Search. LaSalle offers staffing and recruiting solutions to companies of all sizes and across all industries. LaSalle Network is the premier staffing and recruiting firm, earning over 100 culture, revenue and industry-based awards from major publications and having its company experts regularly contribute insights on retention strategies, hiring trends and hiring challenges, and more to national news outlets.
