Job Description

The Associate IT Security Analyst will be an integral part of our Security Operations Center (SOC) and will be responsible for ensuring the operation and delivery of critical security services to protect and enhance the confidentiality, integrity, and availability of Wolters Kluwer assets. This position is located in Chennai, India. As an Associate IT Security Analyst, you will perform duties and tasks as a part of the Global Security Operations team to ensure potential security incidents representing vulnerability and exposure to Wolters Kluwer are contained and remediated. In this role, you will be required to demonstrate knowledge in security incident handling and incident response and information synthesis in every area of IT security management. Your role will also include interfacing with and responding to internal business unit IT representatives and stakeholders at all levels during performance of your duties. Responsibilities: Performs review of the Crowdstrike Falcon platform from the WK perspective, in conjunction with the Crowdstrike Falcon Complete Team. Working with business units to understand and properly address emerging incidents in accordance with WK policy and established best practices. Liaison to customer Business Units and other GBS organizations for security operations concerns. Ensures work is compliant with WK enterprise policies, procedures and the GIS strategic plan Assist in the operationalization of new solutions and technologies during transition to steady-state operations, as directed Supports the investigation of reported security events and incidents and, in coordination with WK other global security operations team members, responds to security incidents and assists with ongoing investigations and root cause analysis (RCA). Contributes to the analysis and delivery of findings to internal customers with impactful, comparative, interpretative security analysis in a clear, consistent, and factual manner. Develops and recommends best course of action based on solid security principles Ensures assigned post-mortem and lessons-learned actions are completed, following incident restoration of service Takes part in cross-functional incident exercise activities, ensuring that policy and procedure are followed Responsible for ensuring knowledge of IT security and hardening best practices remains current Responsible for reviewing threat intelligence sources is support of WK security situational awareness Assists in developing vulnerability and threat-related communications for potential dissemination to warn WK employees of an emerging situation, focused on improving awareness Ensures information arising from incident response activities is communicated to the proper operational contacts for awareness and possible action Bachelor\'s Degree in Computer Science/MIS or equivalent experience Flexible working hours to support a global 24X7 security operations team Required Interpersonal Skills Excellent oral and written communication ability Ability to present complex technical issues and findings to diverse audiences in both technical and non-technical parlance, both orally and in writing Diplomacy in working with customers and stakeholders in other parts of the business Ability to follow policy and procedure Ability to work in a team and at times perform under stress Demonstrate integrity in dealing with potentially sensitive data and restricted information Exceptionally self-motivated with a superior analytical, evaluative, and problem-solving abilities Ability to set and manage priorities judiciously Required Technical Skills Knowledge of basic security principles to include confidentiality, integrity, and availability access control, authentication, and authorization privacy and non-repudiation Understanding of security vulnerabilities and exposures, and from where they arise Familiarity with the Internet, its network protocols, and network applications and services Knowledge of network security issues and host/system security configuration and hardening Knowledge of with Risk Analysis and Risk Management, to include security exception management Required System Security Skills Through good communication and documentation, presents a consistent front to customers and stakeholders Ability to synthe data from technical skills listed above to understand and convey security best practices Ability to utilize interpersonal skills listed above to communicate with customers and stakeholders and bring quick resolution Demonstrated ability to analyze ongoing situations for the potential of a security incident Ability to maintain inventory oversight in support of WK asset control requirements Familiar with ITIL service management methodology Strong technical skills in security assessments of external service providers and management of partner suppliers Knowledge of GDPR and GDPR compliance implementations Knowledge of ISO 27001, NIST 800-53, NIST CSF and PCI DSS. Preferred certifications: CISSP Infrequent Domestic or International Travel, up to 25%, as directed

Monster