Information Security Analyst

VEGAS.com is the No. 1 destination travel site in the world. Millions of people use VEGAS.com every month to plan and book their hotel rooms, show tickets, air-hotel packages and more. Join our team and enjoy a challenging work environment, great benefits and opportunities for career development.

INFORMATION SECURITY ANALYST

The Information Security Analyst is responsible for developing and maintaining the information security policy; designing security awareness and training programs; monitoring compliance with security policy; and coordinating investigation and reporting of security incidents.  Working with the infrastructure and software teams, the Information Security Analyst will monitor, assess, and fine-tune the IT disaster recovery program, perform network penetration tests, application vulnerability assessment scans and risk assessment reviews.

ESSENTIAL JOB FUNCTIONS

  • Monitor and advise on security issues related to the network, systems and software to ensure the internal security controls are appropriate and operating as intended.
  • Coordinate and execute IT security projects and status reports.
  • Coordinate response to information security incidents.
  • Develop information security policies, procedures, standards and guidelines based on knowledge of best practices and compliance requirements.
  • Create and enforce a PCI DSS security compliance policy.
  • Conduct security audits and manage remediation plans.
  • Collaborate with IT management, the legal department, safety and security, and law enforcement agencies to manage security vulnerabilities.
  • Create, manage and maintain user security training and awareness programs.
  • Conduct security research in keeping abreast of latest security issues.
  • Identify upgrade opportunities to improve network, system and software security.
  • Install, test, and operate security monitoring systems.  Monitor various security systems including the configuration of and response to security incident notifications.
  • Maintain enterprise-wide security services including system patching, IDS management, virus protection, spyware protection and vulnerability/penetration testing and remediation.
  • Function as an off hours point of contact in case of unplanned events.
  • Act as a technical security representative for VEGAS.com with vendors and clients.
  • Create written procedures and contingencies for planned security events.

The ideal candidate will have the following experience and qualifications:

  • A 4-year college degree or similar experience.
  • Minimum 3 years of experience in a related position, 5+ preferred.
  • Industry certifications preferred (such as CISSP, CISA, or CISM).
  • Expert on desktop and server operating systems, including Windows, Linux and OSX.
  • Minimum three years’ experience maintaining a PCI DSS compliance program for enterprise merchants and/or service providers.
  • Strong knowledge of MS Office suite including Word, Excel, Outlook, and PowerPoint.
  • Experience managing vendor relationships.
  • Strong oral and written communications skills.
  • Must have valid Nevada Driver’s License, clean driving history and proof of insurance.

To excel in this environment, you must be able to work in a fast paced, rapidly changing environment.  The work hours are Monday-Friday from 8am to 5pm but may vary as our business operates 24x7.

If you think you have what it takes to be the newest edition to our team, please submit your resume to jobs@vegas.com with “Information Security Analyst” in the subject line.

VEGAS.com is an Equal Opportunity Employer.

Local candidates preferred.