Senior Information Security Analyst

Job Description

Why Valvoline Global Operations?

Valvoline Global is a worldwide leader in automotive and industrial solutions, creating future-ready products and best-in-class services for partners around the globe. Established in 1866, we introduced the world's first branded motor oil, claiming our position as The Original Motor Oil. ?

As an affiliate of Aramco, one of the world's largest integrated energy and chemicals companies, we continue to invest strategically and expand globally, driving unparalleled product innovation and sustainable business solutions.

Our corporate values of care, integrity, passion, and excellence shape everything we do. Living out our values is what makes our company, our employees, our partners, our customers, and the communities we serve great.

When you join Valvoline Global, you join a culture that is committed to: treating all people with care, operating with integrity, striving for excellence in everything we do, and showing passion about delivering on our commitments.

Careers for the Driven

Valvoline has a rewarding opportunity as a Senior Information Security Analyst. We whole-heartedly adopt a 'never idle' mindset. We also know that outstanding service begins and ends with our employees. So, we're looking for good people to join our team. You bring your skills, talents, and drive. We will give you a great place to work, a competitive salary and benefits, and the resources and support to develop and advance within our global company.

How You'll Make an Impact

The Senior Information Security Analyst will partner with Business and IT teams to understand business goals and develop strategies and solutions that mitigate the risk to data, systems, and people while balancing the business' operational needs. The role is directly accountable for system and security architectures and maintaining appropriate security posture through design and operations. The role will also have operational responsibilities for internal security systems by designing and maintaining platform health in the cloud and traditional data center environments. The role will also work to secure enterprise information by determining security requirements including the planning, implementation and testing of security systems. In the role, you would be responsible for:

• Recommending improvements to company's security posture through technological, administrative, or physical controls. Assists in creation of guidelines and standards for the secure use of cloud, mobility, and web technologies. Works with project teams regarding security architecture and technical implementation. Executes the organizational information security plan, performing tasks and activities prescribed by policy and process, allowing the organization to take a proactive information security stance. This includes a variety of activity such as administering security awareness training and testing, performing telecommuter risk management assessments, ensuring acceptance to the acceptable use agreement, processing requests for security exceptions, and other similar tasks.
• Participating in projects across cross-functional teams that are vital to security posture. Researches and tests solutions to meet security capability gaps. Maintains security by monitoring and ensuring compliance to standards, policies, and procedures. Upgrades security systems by monitoring the security environment, identifying security gaps, and evaluating and implementing enhancements.
• Recommending and maintaining appropriate solutions to secure both internal and external-facing applications hosted in various IaaS, PaaS, or SaaS models. This includes implementation of security processes and procedures for application development by internal and contract developers, and evaluation of external vendor security posture. Prepares system security reports by collecting, analyzing, and summarizing data and trends.
• Proactively identifying flaws in existing network security system architectures and applications by implementing and operating various identification and exploitation processes and supporting technologies.
• Planning security systems by evaluating network and security technologies; developing requirements for firewalls and related security and network devices.
• Validating network infrastructures for security best practices and recommending changes to enhance security and reduce risk, where applicable.
• Other duties and responsibilities as determined by Valvoline Global Operations from time to time in its sole discretion.

What You'll Need

• Bachelor's Degree in Information Technology or related technical degree preferred
• If degree : Minimum of five years of experience in information technology, with at least one of those years dedicated to information security (e.g. enterprise security engineering, design, and implementation)
• If no degree , the minimum requirements are seven years of IT experience AND two years of information security experience
• Associate of (ISC) 2 or CISSP certification required
• Once requisite experience for a CISSP is available, must obtain and maintain a CISSP certification
• Advanced experience in Information Security with a focus on enterprise network security, performance, and reliability
• Direct, hands-on experience and/or strong working knowledge of managing security infrastructure, including firewalls, Intrusion Protection systems (IPS), Web Application Firewalls (WAF), endpoint protection, and log management technologies
• Strong experience designing and operating network systems and environments within the major cloud providers, and managing associated infrastructure
• Ability to manage complex network security and/or infrastructure and operations projects and/or programs for a large enterprise organization
• Strong working knowledge of current IT risks, and experience in implementing network security solutions
• Experience reviewing security technologies, tools, and services, and making recommendations to the broader Security team for this use, based on security, financial, and operation metrics
• Ability to interact with a broad cross-section of IT personnel to explain and enforce network security standards
• Excellent documentation and communication skills, including experience presenting to IT or Security leadership, as well as individual Security team members
• Must be authorized to work in the U.S.

What Will Set You Apart

• Cloud Computing Security Certifications (e.g., CCSP, CCSK, CompTIA Cloud+, CCA, CCP, AWS Certified Security Specialty, etc.) highly desired
• Advanced experience with network security detection/prevention and access technologies for protecting cloud-based applications/environments

Benefits That Drive Themselves

• Health insurance plans (medical, dental, vision)
• HSA and flexible spending accounts
• 401(k)
• Incentive opportunity*
• Life insurance
• Short and long-term disability insurance
• Paid vacation and holidays*
• Employee Assistance Program
• Employee discounts
• Tuition reimbursement*
• Adoption assistance*

*Terms and conditions apply, and benefits may differ depending on position.

Valvoline provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. Are you good at what you do? Join us.

The Company endeavors to make its recruitment process accessible to any and all users. Reasonable accommodations will be provided, upon request, to applicants with disabilities in order to facilitate equal opportunity throughout the recruitment and selection process. Please contact Human Resources at 1-800-Valvoline or email [email protected] to make a request for reasonable accommodation during any aspect of the recruitment and selection process. The contact information is for accommodation requests only; do not use this contact information to inquire about the status of applications.

Application Instructions

Please click on the link below to apply for this position. A new window will open and direct you to apply at our corporate careers page. We look forward to hearing from you!