Lead Analyst, Information Security & Compliance

Total Wine & More

About The Position

Total Wine & More is seeking a Lead Analyst, Information Security & Compliance to join our Technology team in our Bethesda, MD office. You will focus on information security responsibilities including incident response, vulnerability management, insider threat management, data loss prevention (DLP), and reporting and presenting to senior leadership. You will also provide exposure to other information security disciplines such as risk management, third party risk management, policy development, and security engineering. You will report to the Senior Director of Information Security. You will Lead and support security and compliance initiatives including application security, vulnerability management, insider threat detection and management, and digital loss prevention. Manage vulnerability management disclosure program, analyze and triage bug bounty program, and coordinate remediation efforts with IT and team members. Analyze and assess security configurations and dashboards for new threats. Analyze Security Information and Event Management (SIEM) alerts to identify security issues for investigation and remediation. Develop security and compliance metrics and dashboards for operational and management reporting. Provide support for user-reported security incidents and perform root cause analyses for problems, including after hours and on-call support. Support information security team on special projects including identity and access management, advanced endpoint protection, and disaster recovery planning. You will come with Bachelor’s Degree in Information Security preferred or equivalent years of experience. 5-8 years in an information technology related discipline, with at least 3 years in information security preferred. Experience working with and securing cloud platforms such as Azure, AWS, and GCP. Experience working with Microsoft Purview or other similar compliance tools focused on Insider Threats and Digital Loss Prevention. Intermediate knowledge of network architecture and network, system, and application security. Intermediate knowledge of Windows server and Unix/Linux operating systems. Working knowledge of security frameworks, regulatory requirements, and industry standards such as NIST, COBIT, ISO 27001, PCI-DSS, GDPR, and CCPA.

Requirements

Bachelor’s Degree in Information Security preferred or equivalent years of experience.
5-8 years in an information technology related discipline, with at least 3 years in information security preferred.
Experience working with and securing cloud platforms such as Azure, AWS, and GCP.
Experience working with Microsoft Purview or other similar compliance tools focused on Insider Threats and Digital Loss Prevention.
Intermediate knowledge of network architecture and network, system, and application security.
Intermediate knowledge of Windows server and Unix/Linux operating systems.
Working knowledge of security frameworks, regulatory requirements, and industry standards such as NIST, COBIT, ISO 27001, PCI-DSS, GDPR, and CCPA.

Responsibilities

Lead and support security and compliance initiatives including application security, vulnerability management, insider threat detection and management, and digital loss prevention.
Manage vulnerability management disclosure program, analyze and triage bug bounty program, and coordinate remediation efforts with IT and team members.
Analyze and assess security configurations and dashboards for new threats.
Analyze Security Information and Event Management (SIEM) alerts to identify security issues for investigation and remediation.
Develop security and compliance metrics and dashboards for operational and management reporting.
Provide support for user-reported security incidents and perform root cause analyses for problems, including after hours and on-call support.
Support information security team on special projects including identity and access management, advanced endpoint protection, and disaster recovery planning.