Analyst, Information Security
The Trade Desk is a global technology company with a mission to create a better, more open Internet for everyone through principled, intelligent advertising.
Handling over 600 billion queries per day (more than 100X the query volume of search globally), our platform operates at unprecedented scale. We have also built something even stronger and more valuable: an award-winning culture based on trust, empathy, collaboration, and ownership. By working together across typical dividing lines, we are better as a team than any of us could be apart.
Do you have a passion for solving hard problems at scale? Are you eager to join a trust-based, globally-connected team, where your contributions will make a meaningful difference?
Come and see why Fortune Magazine consistently ranks The Trade Desk among best small-medium sized workplaces globally.
WHO ARE WE LOOKING FOR:
We are looking to hire a versatile Information Security Analyst to join our
Information Assurance Department at our New York Office. This person will report
directly into our Director of Information Security and will support information
security & compliance initiatives throughout the enterprise organization.
WHAT YOU WILL DO:
Contribute to the ongoing development of The Trade Desk’s Information
Security Program and help define the roadmap for maturity of the program.
Assist in IT Risk Assessment, Vendor Management, and Risk Management
programs
Evaluate effectiveness and perform internal testing of security controls
Coordinate written responses to RFPs on IT security, controls and compliance
areas
Review and update information security policies, procedures, standards, and
other InfoSec documentation
Assist in maintaining Information Security documentation repository
Collaborate cross-functionally with teams to document, implement, monitor
and manage IT controls
Promote security awareness and cultivate employees’ adherence to
information security best practices
Participate in special projects and duties as required
Support in Incident Response and Incident Management procedures.
Monitor and provide operational support for security alerts and events.
Analyze and identify opportunities for automation
Identify, assess and respond to emerging threats and vulnerabilities including
risk of likelihood and impact, using Threat Intelligence. Assist with mitigation
and prevention of vulnerabilities.
Recommend improvements to the vulnerability management program.
WHAT YOU BRING TO THE TABLE:
At least 3 years of full-time work experience in IT, network, or Information
Systems or related experience.
Understanding of technical aspects and tools of information security
Working knowledge of common IT technologies and processes
Familiarity with common Information Security and Information Technology
frameworks and standards, such as COBIT and ITIL
Understanding of risk management principles and methodologies
Ability to transform abstract requirements into cohesive actions
Excellent written & verbal communication skills – including the ability to
present technical concepts to non-technical stakeholders
Strong work ethic, attention to detail, and organizational skills
Ability to multi-task and manage priorities in a fast-paced environment
Ability to collaborate in a team setting, as well as work independently
Conceptual understanding of software development methodologies
Knowledge of ISO27001/27002, PII, PHI, financial data regulations, data
residency requirements, and international regulatory aspects pertaining to
sensitive information is a plus
Experience with application security, SaaS, or cloud security is a plus
Experience with programming or scripting languages is a plus
#LI-CP1
The Trade Desk does not accept unsolicited resumes from search firm recruiters. Fees will not be paid in the event a candidate submitted by a recruiter without an agreement in place is hired; such resumes will be deemed the sole property of The Trade Desk. The Trade Desk is an equal opportunity employer. All aspects of employment will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law.