Information Security Analyst(with Data access and data governance strategy experience)

Title: Information Security Analyst(with Data access and data governance strategy experience)

Location: Remote/WFH

Duration: 06+ Months Contract

Role Summary:

4 - 7 Years of experience required.

Access Security/Entitlements Controls Responsibilities:

• Support assessing, documenting and developing robust access control systems to ensure that only authorized users can access certain data resources across data platforms including Databricks, Snowflake.
• Develop and mature, enforce policies for strong authentication and authorization mechanisms.
• Work with Legal, Infosec teams to integrate access controls with existing security infrastructure.
• Conduct regular security assessments and compliance audits to ensure access controls are effective and up to date across various on-prem/off prem data sources.
• Provide training and support to users on access control policies and procedures.
• Collaborate with data owners and stakeholders to understand data access requirements and implement appropriate controls.

Immuta Policy Implementation Responsibilities:

• Become proficient with the Immuta data governance platform, understanding its capabilities and how it can be used to manage data access.
• Define and implement data policies within Immuta to control access to sensitive data based on user roles, attributes, and data classification.
• Work with data owners to understand the sensitivity of data and create appropriate data masking, anonymization, or redaction policies in Immuta, including developing attributes for various department roles and individuals across the firm.
• Ensure that Immuta policies are in compliance with relevant data protection regulations such as GDPR, CCPA, HIPAA, etc.
• Automate policy enforcement where possible using Immuta's policy builder and API integrations.
• Monitor policy effectiveness and make adjustments as necessary to respond to changing requirements or threats.
• Collaborate with analytics/business to ensure that data access policies do not impede legitimate data use cases.
• Train users on how to use Immuta and understand the data policies that apply to their access.
• Stay up to date with new features and best practices for policy management in Immuta.

General Responsibilities:

• Document all access control and policy implementation procedures.
• Communicate effectively with both technical and non-technical stakeholders to explain access control measures and policy decisions.
• Participate in strategic planning for data governance and security initiatives.
• Keep abreast of the latest trends and developments in data security, access control, and data governance technologies.

Qualifications:

• 4-7 years as Information Security Analyst
• Data access strategy and data governance strategy experience