Fortinet Information Security Analyst 

United States, California, Sunnyvale 

903456150

As an Information Security Analyst, your responsibilities will include:

• Policy Governance: Develop, review, and maintain IT security policies and procedures in alignment with industry standards and regulatory requirements.
• Risk Assessments: Conduct regular risk assessments to identify vulnerabilities, threats, and impacts to IT assets and operations. Evaluate the effectiveness of existing controls and recommend enhancements.
• Risk Management: Collaborate with various departments to develop and implement risk management strategies, including risk mitigation plans and monitoring processes.
• Third-Party Risk Assessments: Perform due diligence and risk assessments on third-party vendors to ensure compliance with security policies and frameworks. Monitor and manage ongoing third-party risk.
• Compliance Framework Implementation: Assist in the implementation and maintenance of compliance frameworks and certifications (NIST 800-53, StateRAMP, FedRAMP). Prepare for and support audits and assessments.
• Documentation and Reporting: Maintain accurate documentation of compliance activities, risk assessments, and remediation efforts. Prepare reports for management and stakeholders.
• Continuous Improvement: Stay current with industry trends, regulations, and best practices in IT security and compliance. Recommend improvements to existing processes and controls.
• Internal Audits: Plan, execute, and manage internal audits to assess compliance with StateRAMP and FedRAMP standards and other relevant frameworks.

We are looking for:

• Bachelor degree in Information Security, Cybersecurity, Information Technology, or a related field
• 5+ years of hands-on experience in IT security, compliance, or risk management.
• Strong knowledge of security compliance frameworks and standards (NIST 800-53, StateRAMP, FedRAMP).
• Experience with risk assessment methodologies and tools.
• Familiarity with third-party risk management processes.
• Excellent analytical, problem-solving, and communication skills.
• Proficient in Microsoft Office applications (Word, Excel, and PowerPoint), collaboration platforms (SharePoint, Outlook, and Teams), and GRC/Compliance Management tools.
• Soft Skills: Exceptional interpersonal and communication abilities; meticulous attention to detail and accuracy; strong organizational and project management acumen.

Wage ranges are based on various factors including the labor market, job type, and job level. Exact salary offers will be determined by factors such as the candidate's subject knowledge, skill level, qualifications, experience, and geographic location.