🌎
This job posting isn't available in all website languages

Security Analyst – Risk & Vulnerability Management

📁
IT/Technical & Product Development
💼
Elsevier
📅
TEC001FW Requisition #

Further growth of our critical global InfoSec and Data Protection function means that we now require a talented Security Analyst for a new role within the Elsevier InfoSec Risk & Vulnerability Management team.

 

Reporting to the Senior Manager for InfoSec Risk & Vulnerability Management, the Security Analyst will leverage analytic and technical skills to discover cyber risks; prioritize assets, assess risks and remediation/mitigation techniques; report on risks, and drive and track remediation/mitigation/acceptance of risk to tackle cyber business problems.  The successful candidate will also work to achieve operational excellence within the security team; will assess vulnerabilities, then collaborate with IT and business teams to ensure prompt and effective distribution of findings and that risk and incidents are addressed in the most effective and efficient manner possible. 

 

This is an on-call position and can require working nights weekends and holidays.

Key Responsibilities:

  • Monitor ticket queue and complete 3rd Party Supplier assessments, Internal security assessments, software reviews, and respond to other security issues as required.
  • Assess new vulnerabilities, investigate solutions and compensating controls
  • Review and validate vulnerability findings, utilizing tools to gather scope and breadth of issue in the Elsevier environment.
  • Advise technical and non-technical stakeholders on appropriate prioritization of remediation/mitigation solutions
  • Verify vulnerability remediation/mitigation through re-test & closure
  • Enhance and update internal operational processes as needed to ensure operational excellence
  • Report, track, and disposition remediation/mitigation/risk acceptance activities
  • Support compliance and due diligence activities related to audits regulatory requirements
  • Help drive security maturity in vulnerability management and security in general across the business, through positive engagement 

Key Skills, Experience & Qualifications required:

  • 1-2 years experience working in an InfoSec team
  • A security component to your college degree or alternative InfoSec certification
  • Experience analyzing scans/reports from security scanning tools and other internal security tools related to the risks and vulnerabilities in the environment.
  • Possesses detailed understanding of various operating systems and common applications as they relate to vulnerabilities
  • Possesses an understanding of virtual server and cloud environments
  • Possesses an understanding of enterprise technology infrastructure, agile application development & maintenance, software testing, and IT architecture
  • Strong project management skills and ability to multi-task.
  • Strong communications skills to be able to interact with technical and non-technical colleagues.
  • Effective written, oral communication skills, and interpersonal communication skills. 

Elsevier is a global information analytics business that helps institutions and professionals progress science, advance healthcare and improve performance for the benefit of humanity. We help researchers make new discoveries, collaborate with their colleagues, and give them the knowledge they need to find funding. We help governments and universities evaluate and improve their research strategies. We help doctors save lives, providing insight for physicians to find the right clinical answers, and we support nurses and other healthcare professionals throughout their careers. Elsevier provides digital solutions and tools in the areas of strategic research management, R&D performance, clinical decision support, and professional education; including ScienceDirect, Scopus, SciVal, ClinicalKey and Sherpath. Elsevier publishes over 2,500 digitized journals, including The Lancet and Cell, more than 35,000 e-book titles and many iconic reference works, including Gray's Anatomy. 


Elsevier is part of RELX Group, a global provider of information and analytics for professionals and business customers across industries. Elsevier employs over 7,000 people in more than 70 offices worldwide. We are an employer of choice, attracting and developing talented and creative people who thrive in a challenging and fast-paced environment. We offer an excellent compensation and benefits package as well as a real opportunity for career growth in a growing organization. Elsevier is an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. If a qualified individual with a disability or disabled veteran needs a reasonable accommodation to use or access our online system, that individual should please contact 1.877.734.1938 or accommodations@relx.com.

Previous Job Searches

Activity Feed

103066
Job shares through RELX
Someone referred the Software Engineering Lead - Healthcare position. 2 minutes ago
Someone applied to the Sr Product Analytics Manager position. 11 minutes ago
Someone applied to the Energy Market Reporter - ICIS - Houston/Mexico City position. 11 minutes ago
Someone applied to the VP Product Marketing position. 11 minutes ago
Someone applied to the Data Scientist position. 11 minutes ago

Similar Listings

Elsevier

Philadelphia, Pennsylvania, United States

📁 IT/Technical & Product Development

Requisition #: TEC001NJ

Elsevier

Philadelphia, Pennsylvania, United States

📁 IT/Technical & Product Development

Requisition #: TEC001HP

Elsevier

Philadelphia, Pennsylvania, United States

📁 IT/Technical & Product Development

Requisition #: TEC001D8