Title:  Cybersecurity Analyst - Application Security

Date:  Sep 24, 2021
Location: 

Chicago, IL, US, 60606

Company:  simsmetalm
867

Sims Limited (Sims) is a global leader in metal and electronics recycling, and an emerging leader in the municipal recycling and renewable energy industries. With facilities across the globe, Sims plays an intrinsic role in the circular economy by making resources available for future use. As a responsible corporate citizen, we continuously seek new ways to broaden our participation in the environmental sector, ensuring that our future is as bright, safe, and secure as at any time in our long history.

 

Sims is proud to be an equal opportunity employer. We value the diversity of all of our employees, and we are committed to creating a working environment that is built on a foundation of respect and inclusion where everyone can contribute, advance on merit, and realize their full potential.

 

Purpose of Role

To assist with cybersecurity duties.

 

Principal Accountabilities

  • Work with our GRC (Governance, Risk & Compliance) access management control system vendor and application owners to implement application security to include:
  • Provisioning/deprovisioning ERP users into SAP
  • Provisioning Emergency Access Management
  • Identification of segregation of duty issues with users across all SAP platforms
  • Ability to onboard SAP applications into vulnerability management tools
  • Analyze web-application security assessments and assist with recommendations on how to fix vulnerabilities
  • Work with development teams to integrate application security into SAP applications
  • Assist with updating and maintaining cybersecurity policies and standards regarding compliance, education, and security awareness
  • Research and document cybersecurity policy exceptions and ensure compliance
  • Working with internal/external auditors to resolve security issues
  • Research and document cybersecurity policy exceptions and ensure compliance
  • Work with information systems owners and administrators to understand their security needs
  • Assists with implementing practices and procedures consistent with Sims security policies
  • Handle highly confidential information in a strictly professional manner
  • Able to work outside of regular business hours as required
  • Assist with interactions with business leadership and users to gather and document business and technical requirements (both functional and non-functional)
  • Ensure proper documentation and traceability of the business requirements through the solution design and delivery process
  • Provide problem resolution of customer issues reported via the IT Service Desk System
  • Assist with updating and maintaining cybersecurity policies and standards in regard to compliance, education, and security awareness

 

Core Responsibilities

  • Demonstrate personal responsibility for, and promote culture of proactive compliance with, all Safety, Health, Environment, Community, and Sustainability (SHECS) policies, procedures, and initiatives within sub-region or regional function with multiple teams
  • Promote culture of diversity and inclusion, positive employee relations, and teamwork, and ensure standards of fairness and equality are maintained within sub-region or regional function with multiple teams
  • Set and approve budgets and manage costs in line with Company strategy, budgetary requirements, and financial policies and procedures for sub-region or regional function with multiple teams
  • Support, recommend, and implement continuous improvement initiatives and foster compliance with quality requirements in accordance with a regional or global functional strategy
  • Support and ensure compliance with all Company policies, procedures, and initiatives within sub-region or regional function with multiple teams
  • Devise workforce strategies to build capabilities, instill high performance, and promote career-development in line with succession-planning initiatives for sub-region or regional function with multiple teams

 

Experience / Qualifications Required

  • CISA, CISM, CISSP certification preferred
  • Minimum of a bachelor’s degree
  • Minimum of 2 years’ experience in security in an enterprise environment

 

Skills

  • Solid technical knowledge of Windows, LINUX, and networking environments
  • Strong working knowledge of SAP applications including S4/HANA and SuccessFactors
  • Experience with management and monitoring of privileged access to all SAP applications, and other cloud-based applications
  • Cybersecurity skills including analysing vulnerability reports for determining a remediation plan
  • Technical writing including policy and procedural documents 
  • Knowledgeable with MFA and authentication processes and protocols 
  • Familiarity with authentication services, as well as PKI and token/certificate-based authentication, DNS, and AD structure
  • Working knowledge of information systems security standards/practices (e.g., access control and system hardening, system audit and log file monitoring, security policies, and incident handling)
  • Understanding of security frameworks such as ISO 27001, COBIT, HIPAA, GDPR, etc.
  • Meaningful hands-on experience with GRC tools and SAP is required.
  • Experience with management and monitoring of privileged access to all SAP applications
  • Working knowledge of vulnerability management processes
  • A thorough understanding of technology, tools, policies, and standards related to security systems and incident response
  • Solid technical knowledge of Windows, LINUX, and networking environments
  • Ability to clearly communicate information security matters to executives, auditors, end users, and engineers 
  • Ability to quickly understand systems to identify and validate security requirements
  • Strong analytical skills, documentation creation skills (presentations and policies), and awareness of change management practices
  • Willingness to learn and expand knowledge and capability in new areas as needed

 

Core Competencies

  • Safety
    • Effectively supervise team’s safety, solve simple problems in line with SHECS standards
  • Accept & Expect Accountability
    • Set and achieve challenging targets relevant to team and/or projects, monitor quality and accuracy of team’s work and ensure acceptable standard of quality
  • Inspire with Passion
    • Communicate well verbally and in writing, create accurate and punctual reports, share information and ideas with others, has good listening skills
  • Band Together
    • Prioritize tasks to meet clear deadlines, overcome obstacles, motivate and encourage others, promote mutual respect and supports inclusion, handle difficult people, apply clear and consistent performance standards, provide guidance to improve performance
  • Consistently Innovate
    • Break down problems into smaller components and responds, seek input from others to address root cause of issues, make timely decisions and communicates decisions to others, support and adapt to change, open to new ideas, take on new responsibilities, handle pressure, show initiative, support continuous improvement programs
  • Planning & Project Management
    • ​​​​​​​Plan and complete tasks, goals and projects with short to medium-term impacts, keep own and team's work aligned with business goals, accountable for completion of own and team’s tasks and goals, keep information organized and accessible, work systematically and efficiently, manage resources efficiently, create contingency plans
  • Business & Job Knowledge
    • ​​​​​​​​​​​​​​Understand own and team's duties and responsibilities, has necessary technical skills, has necessary job and product/market knowledge, keep job and product/market knowledge current, understand and communicate policies and procedures applicable to self and team

 

With a promote-from-within philosophy and a variety of programs available to support continuous learning, Sims offers the opportunity for a rewarding career. We are committed to the ecologically sound and sustainable use of resources and strive to operate in a manner that minimizes waste and protects the environment.

 

A career with Sims provides you with the opportunity to work with an organization whose goal is to be the world’s safest and most responsible recycling company. Our people achieve this by creating a zero-harm workplace, being exemplary members of the communities in which we operate, and being responsible stewards of the environment. We also offer competitive pay and a range of attractive benefits.

 

Find Out More…

Please visit www.simsltd.com for more information on Sims and its commitment to sustainability.

 

SIMS LIMITED IS PROUD TO BE AN EQUAL OPPORTUNITY EMPLOYER. WE VALUE THE DIVERSITY OF ALL OF OUR EMPLOYEES AND ARE COMMITTED TO CREATING AN INCLUSIVE WORKING ENVIRONMENT WHERE EVERYONE CAN CONTRIBUTE, ADVANCE ON MERIT, AND REALIZE THEIR FULL POTENTIAL. SIMS LIMITED IS AN EQUAL OPPORTUNITY EMPLOYER. THE COMPANY DOES NOT DISCRIMINATE WITH REGARD TO RACE, SEX, RELIGION, COLOR, NATIONAL ORIGIN, CITIZENSHIP STATUS, DISABILITY, AGE, MARITAL OR FAMILIAL STATUS, SEXUAL ORIENTATION, GENDER IDENTITY, GENDER EXPRESSION, VETERAN STATUS, HOUSING STATUS, SOURCE OF INCOME, OR ANY OTHER STATUS PROTECTED BY FEDERAL, STATE, OR LOCAL LAWS. THIS APPLIES TO ANY EMPLOYMENT DECISION, INCLUDING RECRUITING, HIRING, PLACEMENT, PROMOTION, TERMINATION, LAYOFF, RECALL, TRANSFER, LEAVES OF ABSENCE, COMPENSATION, AND TRAINING.  QUALIFIED APPLICANTS WITH A DISABILITY IN NEED OF A REASONABLE ACCOMMODATION MAY REQUEST SUCH WITHOUT FEAR OF REPRISAL OR DISCRIMINATION. 


Nearest Major Market: Chicago