Lead Information Security Analyst

Before you apply to a job, select your language preference from the options available at the top right of this page.

Explore your next opportunity at a Fortune Global 500 organization. Envision innovative possibilities, experience our rewarding culture, and work with talented teams that help you become better every day. We know what it takes to lead UPS into tomorrow—people with a unique combination of skill + passion. If you have the qualities and drive to lead yourself or teams, there are roles ready to cultivate your skills and take you to the next level.

Job Description:

Job Summary

This role will remain part of EMEAI + LATAM Information Security Team and have InfoSec responsibilities for EMEAI and LATAM Information Security GRC initiatives.

The Lead Information Security Analyst role conducts Security Risk Assessments with an aim to determine the effectiveness of security controls, identifies risks and control gaps and provide an independent assurance to the leadership. This position facilitates collaboration with other IT and non-IT functions enabling them to operate in a risk aware environment.

The role shall conduct Information Security Assessments on Vendors who process UPS or UPS Customer Data based on industry standard security frameworks such as SIG, CAIQ, NIST 800:53 or ISO27001. The role will also lead negotiations with the Vendors to sign Information Security Agreements.

In addition to responding to Customer RFPs on Information Security, the role will provide SME support for any Customer Assurance Audits representing the interests of UPS and shall also engage in the review of the standard Information Security clauses in any agreements with Customers.

The role will collaborate with other teams such as Privacy and Aviation and ensure appropriate responses are provided to Information Security / Cyber Security related compliance questionnaire to Regulators.

The role will oversee a team of Analysts / Associates and will guide and trains colleagues to increase their skill sets and knowledge. The role must be able to work independently with little supervision or oversight.

The role must maintain a current knowledge of emerging technologies and cyber / privacy regulations.

The role must act as a trusted advisor to the IT, Privacy, and other business teams.

Professional Experience/Skills

• Hands-on administration of RACF and ACF2 login ID’s, dataset and resource rules.

• Hands – on Experience in Mainframe Digital certificates.

• Monitor system security policy and violations/incidents

• Perform and review daily, weekly, and monthly audit reports

• Good Experience in tools like vanguard, Zsecure, Carla scripts.

• Liaison with business areas and other technical support areas

• Provide customer support by preparing ad hoc reports and giving presentations

• Monitors the environment for adherence to security standards

• Must be available 24 x7

• ACF2, Top Secret, and iSeries security knowledge a plus

Development and rollout of Information Security Policies and Standards

Leading / conducting Information Security Assessments to comply with various industry standards including working knowledge of cyber & privacy regulations such as NIS 2.0 and GDPR in addition of expertise in standards such as ISO27001 and NIST 800:53 / NIST 800:171

Information Security Risk Management

Fundamentals on one of more of the following areas: Security Operations, Security Architecture & Engineering, IT Networking, IT development and Cloud technologies.

Education :

14+ years of experience.

The Lead Information Security Analyst will possess a degree or beyond in domains

such as Information or Cyber Security, Information Systems, Computer Science, Mathematics, or related field or its equivalent and a credible work experience.

Certifications

Must possess one or more of the following certifications or their equivalent:

CISA or CISM or CISSP or Cloud Security

Any additional technology related certifications will be an added advantage.

Employee Type:

UPS is committed to providing a workplace free of discrimination, harassment, and retaliation.