Senior Information Security Analyst

Working as one team across geographies and functions We are fortunate to be led by a team of passionate, talented and experienced people who are committed to helping Axway customers succeed in the digital economy.

Axway, a market leader in governing the flow of data, is a software and services company headquartered in Phoenix, Arizona. Established in 2001, Axway serves more than 11,000 organizations in 100 countries, with offices around the globe. Our award-winning products, solutions and services enable business-critical interactions by governing the data that flows across the enterprise, as well as data flows that span beyondthe enterprise edge including partner communities and the cloud. Axway’s industry-leading offerings include: business-to-business integration, managed file transfer, secure email, business operations monitoring, process management, API and identity management, as well as professional and managed services, cloud solutions, and Software-as-a-Service. Objectives: The Senior Information Security Analyst is a member of the Security Office, a team dedicated to IT security within the Process, Risk and Security group (PRS), The PRS Group is responsible to analyze and evaluate global security and operational risks, mitigate them, ensure quality and security in operational processes, maintain the quality management system and the information security management system, enhance the firm’s controls and countermeasures and maintain the compliance with external international standards. The position is reporting to the Vice-President of Quality, Security and Compliance.

* The Security Office provides security services and information risk management support to our global teams and departments. Specifically, the Security Office acts as a control group to ensure that security operational procedures are performed and all risks are mitigated or remediated. * The Senior Security Analyst is the main point of contact for North America concerning the Information Security Management related topics. Analyst will be in direct contact with IT, Customer Services, Sales and Legal departments. As part of the Security Office, the Senior Information Security Analyst responsibilities include, but are not limited to: * Understanding of Axway Information Security Management System; * Managing external security audits process: customer onsite and remote audits, corrective actions follow-ups; * Managing internal security audits and security assessments: review applications, business processes and suppliers for adequacy of security controls and compliance to Information security Management System; * Incident Management: Manage the investigation, containment, and response to information security incidents (e.g. Intrusion Detection System, etc.); * Providing guidance as needed to IT and Business partners to ensure secure implementation of processes, systems and services and ensure Technology is always “audit-ready” and facilitate regular internal audit review; * Produce metrics of the firm’s security systems and departmental processes; * Project based work as necessary related to security controls.

Skills / Qualifications: * 5 years of experience within an Information Security role; * 5-10 years of experience in an IT role; * Technical knowledge of Information Technology systems and the ability to analyze them for vulnerabilities: * Windows/UNIX/Linux Operating Systems; * Web based applications; * Remote Access technologies; * Vulnerability scanning and mitigation; * Understanding of enterprise computing environments, distributed applications, and a strong understanding of TCP/IP networks, Sockets, TLS, SSL, and VPN; * Authentication and Authorization mechanics and protocols * Mobile devices; * Programming experience is a plus; * Successfully manage time and technical responsibilities, set accurate expectations and meet deliverable deadlines while working in a team environment; * Experience working in a diverse global environment with the ability to be flexible where business drivers dictate; * Must possess or obtain within 18 months from date of hire, industry recognized information security certifications, such as a CISM, CRISC, CISA, CISSP, CSSLP. * Skills: * Strong verbal and written communication skills. Ability to adjust communication style/content to interact with IT and business professionals. * Strong interpersonal, analytical, problem-solving, prioritization, organizational skills and attention to detail. * Strong analytical skills to determine the key pieces of information required to make informed decisions. The ability to utilize data analysis tools such as MS Excel (e.g. pivot tables, etc.). * Education: * Bachelor’s degree in Computer Science, Information Technology, related field or equivalent industry work experience.