Notice of Job Opportunity: Information Security Associate

AVAILABLE POSITION: Information Security Associate

JOB LOCATION: 344 20th Street, Oakland, CA 94612

JOB DUTIES: Responsible for auditing, reviewing, developing, and implementing data security policies, procedures, design, and architecture to safeguard company information. Work with U4I’s Operations Team, reporting directly to the Operations Director. Assist the Operations and Programs teams in making important security-related decisions, as well as the development and implementation of data security policies and procedures. Help to coordinate investigations for security-related incidents and policy violations as a key member of an integrated breach response team. Deal with sensitive and critical situations and provides training and education on U4I’s security procedures, policies, and standards at all levels of the organization. Perform internal audits with U4I staff and contractors to test their devices for compliance with the U4I’s security policy and information security best practices. Meet the emerging security needs of the organization, its staff, contractors, and stakeholders. Prepare reports on non-compliance issues and fix devices back into compliance. Participate in rapid-response situations, facilitating a timely response to protect U4I’s information assets. Comprehensive review of internal systems access management, ensuring compliance with Need-to-Know (NTK) and least privilege principles. Participate in the account access review process and provide access to staff, contractors, and other stakeholders. Create security checklists, and issue register based on U4I’s security policy, and keep the checklist regularly updated based on changing needs. Review security awareness training modules and provide suggestions for new modules and feedback on training campaign performance. Prepare security awareness snippets based on receiving reports from U4I’s partners and the field experts on emerging cybersecurity risks.

MINIMUM REQUIREMENTS: Four (4) years of experience in the Job Offered or four (4) years of
experience in the field of Information Security Analysis or Information Security Management.

SPECIAL SKILL REQUIREMENTS:

Experience must include the following:

Information security fundamentals, IT risk assessment, risk management practices and vulnerability management.
System hardening based on CIS and NIST.
In-depth understanding and experience managing Firewalls, Proxies, SIEM, Antivirus, Multi Factor Authentication, SSO, Password management tools, and IDS/IPS.
Must have at least one security-related certification, like CRISC, CISM, or CISSP.

Candidates must be legally authorized to work in US without sponsorship.

Submit resume to:
jobs@united4iran.org.