Sr Information Security Analyst jobs in United States
cer-icon
Apply on Employer Site
company-logo

HMH ยท 1 day ago

Sr Information Security Analyst

positionElkhart County, IN
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

HMH is a learning technology company committed to delivering connected solutions that engage learners, empower educators and improve student outcomes. The Senior Security Analyst will design and implement advanced security solutions, identify vulnerabilities, and collaborate with cross-functional teams to enhance security posture across the organization.

E-learning
check
H1B Sponsor Likelynote

Responsibilities

Design and implement secure cloud architectures (AWS, Azure, GCP)
Secure services like IAM, VPC, S3, KMS, and containerized environments
Develop and enforce cloud security policies and golden images
Implement encryption strategies and monitor environments using tools like ORCA, SIEM, CSPM, CWPP
Ensure compliance with GDPR, HIPAA, SOC 2, PCI DSS, ISO27001, and SOX
Collaborate with Engineering, DevOps, Legal, and Risk teams
Automate security workflows using Python, Java, PowerShell, Bash
Lead application security remediation and incident response
Address OWASP vulnerabilities and conduct forensic investigations
Perform vulnerability assessments using SAST, DAST, IAST, RASP, WAF
Advocate for secure SDLC practices and developer training
Monitor cloud and on-prem infrastructure for security threats
Support and implement controls for third-party attestations

Qualification

Cloud securityApplication securityScriptingAutomationVulnerability assessment toolsWeb development frameworksSIEM toolsEncryptionIAMStakeholder engagementAgile developmentThird-party risk assessmentsCommunication skills

Required

5+ years in cloud security, application security, and infrastructure management
Strong scripting and automation skills (Python, PowerShell, Shell/BASH, Terraform)
Proficiency in web development frameworks (React, Angular, NodeJS, Spring, MVC, HTML, CSS)
Experience with vulnerability tools (SAST, DAST, IAST, RASP, WAF)
Familiarity with Kubernetes, microservices, DevSecOps tools
Understanding of encryption, authentication, and IAM
Experience with SIEM tools (Datadog, Splunk, Sumo Logic, Kibana)
Knowledge of AI/ML and automation in security workflows
Strong communication and stakeholder engagement skills

Preferred

Experience in agile development environments
Prior experience in secure software design for externally facing web applications
Experience with Web Content Management frameworks
Familiarity with security frameworks (CIS, NIST, ISO 27001)
Exposure to third-party risk assessments and compliance audits
Hands-on experience with JIRA, Confluence, and documentation of security processes
Ability to support security incident triage, root cause analysis, and post-incident reviews

Company

HMH

twitter
company-logo
We are an adaptive learning company that empowers educators.
location
Boston, Massachusetts, US
people-size1001-5000 employees
web-link
http://www.hmhco.com

H1B Sponsorship

HMH has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2024 (2)

Funding

Current Stage
Late Stage
Company data provided by crunchbase