Security Analyst

Every day Global Payments makes it possible for millions of people to move money between buyers and sellers using our payments solutions for credit debit prepaid and merchant services. Our worldwide team helps over 3 million companies more than 1300 financial institutions and over 600 million cardholders grow with confidence and achieve amazing results. We are driven by our passion for success and we are proud to deliver best-in-class payment technology and software solutions. Join our dynamic team and make your mark on the payments technology landscape of tomorrow.

Summary of This Role

Develops configures documents and maintains information security tools and solutions. Installs and configures intrusion detection systems endpoint monitoring software and vulnerability scanning systems. Ensures that threats and vulnerabilities to the organizations business systems and applications (both in-house and cloud-based) are minimized. Manages encryption protocols to protect the organizations data as well as management of authentication and access controls. Evaluates information security configurations when intrusions have occurred and monitors the effectiveness of implemented changes. Monitors overall compliance with security standards and conducts periodic security reviews.

What Part Will You Play

• Will work with infrastructure teams to maintain information security; will review legacy systems for patching and mis-configurations; will review new systems prior to production deployment for security gaps

• Will manage program updates on a weekly and monthly basis

• Manage and review compliance scans for remediation needs. Work with DevOps and Application teams to identify and schedule remediation as needed

• Will provide support for key parallel security and compliance programs including security analysis SOX PCI and SOC compliance audits

• Will deploy configure maintain and troubleshoot security tools on Windows and Linux systems in traditional data centers and in Cloud environments including Azure and AWS

• Will schedule and submit applications for SAST and DAST scanning following up with development teams for remediation as necessary

• Will collaborate with DevOps team to deploy and maintain SAST as part of DevOps continuous build and deployment

• Will Interact with Atlassian systems including the JIRA ticketing system to assign and receive work requests

• Support the PCI compliance function by helping to accumulate control evidence

• Backfill IT Ops or Engineering support esp. with regard to managing security tools and Cloud based Firewalls

What Are We Looking For in This Role

Minimum Qualifications

• Bachelor of Computer Science InfoSec or comparable experience

• 2 years of experience in Security Engineer or cybersecurity role

• 2 years experience in Dev/Ops in Windows and/or Linux environments and Cloud hosting

Preferred Qualifications

• CISSP CEH Security
• AWS Security Linux or Microsoft certifications
• Experience with PCI auditing
• Experience with SDLC software development and/ or experience with Agile software development
• Experience with Bash Powershell PHP languages to aid in security review and analysis
• Experience with CIS benchmarking and security tools

What Are Our Desired Skills and Capabilities

• Skills / Knowledge - A seasoned experienced professional with a full understanding of area of specialization; resolves a wide range of issues in creative ways. This job is the fully qualified career-oriented journey-level position.
• Job Complexity - Works on problems of diverse scope where analysis of data requires evaluation of identifiable factors. Demonstrates good judgment in selecting methods and techniques for obtaining solutions. Networks with senior internal and external personnel in own area of expertise.
• Supervision - Normally receives little instruction on day-to-day work general instructions on new assignments.
• Risk Assessment - Ability to identify communicate and mitigate risk within technical solution designs
• Industry Knowledge - Continued self-education of new and emerging threats and relevant processes controls or technologies to mitigate them.
• Incident Response - Knowledge and skills to contribute to all phases of Incident Response.

Global Payments Inc. is an equal opportunity employer. Global Payments provides equal employment opportunities to all employees and applicants for employment without regard to race color religion sex (including pregnancy) national origin ancestry age marital status sexual orientation gender identity or expression disability veteran status genetic information or any other basis protected by law. If you wish to request reasonable accommodations related to applying for employment or provide feedback about the accessibility of this website please contact .