CLA is a top 10 national professional services firm where our purpose is to create opportunities every day, for our clients, our people, and our communities through industry-focused wealth advisory, digital, audit, tax, consulting, and outsourcing services. Even with more than 8,500 people, 130 U.S. locations, and a global reach, we promise to know you and help you.

CLA is dedicated to building a that invites different beliefs and perspectives to the table, so we can truly know and help our clients, communities, and each other.

CLA is looking to hire a Senior Security Analyst to join our growing Internal IT team.

About the role:

As a Senior Security Analyst, you will:

This role works closely with the Director of IT Security Services and the Lead Security Analyst to build and refine the overall security posture for the firm. The focus of the position is to assist in the creation, endorsement, and utilization of technical best practice security architecture that guides the Firm through securing acquisition, building, modifying, and interfacing IT resources throughout the organization with an emphasis on cloud-based services. This role is a hands-on position who supports the Lead and the Security Analysts by assisting in the creation and implementation of best practice documents, security architecture drawings, subject matter expertise in various security products, providing both level 3 and 4 support, and participating and occasionally leading technical projects that span across all IT teams.

Essential Job Functions

• Business Solutions: Acts in a supporting role to the Lead Security Analysts, Business Analysts, and Technical Leads on strategic IT projects. Research and references security policy, renders recommendations and guidance, approves or rejects project artifacts from a security perspective, and performs other tasks in the pursuit of securing systems, processes, procedures, and software applications. This role will often interface with IT peers, IT Leadership and Business Relationship Managers to understand and improve cybersecurity, as it relates to IT security and various CLA Service Lines. They must be able to communicate effectively to target audiences across both the business and technical stakeholders to ensure consistent messaging. They assist the project managers in the creation and documentation of project requirements while ensuring the secure design principles are met. This role works with the CLA technical teams to forecast and assist in road mapping technologies, assist in developing strategic plans from which security standards can be established and enforced. Assesses requirements and translates them into secure system guidelines and high-level technical requirements.
• Technical team Initiatives: They will guide and counsel technical teams, with guidance from the Lead Security Analyst, in performing implementation activities, and review implementation outcomes, to ensure secure design compliance. Other responsibilities include validating controls for Encryption, Access Control, Web Application Vulnerability Detection, OWASP top 10 and other common web application security parameters. Provides peer review of technology initiatives. Creates documentation around security initiatives as required
• Data Loss Prevention (DLP) experience, preferable Microsoft Purview or Zscaler.
• Strong scripting experience with PowerShell or comparable scripting language.
• Incident Response experience.
• Azure security configuration and management
• Experience with vulnerability management

What you will need:

• 4 years of general IT experience required, 2 of which are with security of IT systems and security design/strategy
• Bachelor's degree or combination of experience, education and training may be accepted in lieu of degree

Technical Competencies:

This position works within multiple cybersecurity frameworks (NIST 800-53, NIST-171, CIS, HIPAA, PCI), and should be conversant across multiple frameworks, and competent in the requirements, design, and application of the frameworks into technical solutions and processes. Familiarity with Microsoft security products and technologies.

Our Perks:

• Flexible PTO (designed to offer flexible time away for you!)
• Up to 12 weeks paid parental leave
• Paid Volunteer Time Off
• Mental health coverage
• Quarterly Wellness stipend
• Fertility benefits
• Complete list of benefits

#LI-DJ1

Equal Opportunity Employer /AA Employer/Minorities/Women/Protected Veterans/Individuals with Disabilities.

Click to learn about your hiring rights.

Wellness at CLA

To support our CLA family members, we focus on their physical, financial, social, and emotional well-being and offer comprehensive benefit options that include health, dental, vision, 401k and much more.

To view a complete list of benefits click .