Information Security Business Analyst

TriNet Group
18 Mar 2019
29 Mar 2019
Job role
Contract type
Full time
TriNet is a leading provider of comprehensive human resources solutions for small to midsize businesses (SMBs). We enhance business productivity by enabling our clients to outsource their HR function to one strategic partner and allowing them to focus on operating and growing their core businesses. Our full–service HR solutions include features such as payroll processing, human capital consulting, employment law compliance and employee benefits, including health insurance, retirement plans and workers' compensation insurance.

TriNet has a nationwide presence and an experienced executive team. Our stock is publicly traded on the NYSE under the ticker symbol TNET. If you're passionate about innovation and making an impact on the large SMB market, come join us as we power our clients' business success with extraordinary HR.
Under the direction of the Chief Information Security Officer (CISO), the Information Security Business Analyst (ISBA) will review, analyze, and evaluate information security applications, business processes, and user needs. The ISBA will identify all opportunities for process improvement related to information security at TriNet. This role will be managing TriNet compliance with the Center for Internet Security (CIS) Top 20 Security Controls. The ISBA will also be responsible for managing and tracking TriNet regulatory and NIST Cyber Security Framework (CSF) compliance through ongoing compliance attestation processes under the guidance of the CISO. This includes ensuring that all monthly information security operational metrics are completed accurately by control owners and compiled for executive leadership team review.

  • Implement improvements related to tracking and reporting of information security processes, tools, and compliance activities – especially regarding CIS Top 20 Security Controls.
  • Develop and manage information security related KPIs/KRIs.
  • Assist with documenting information security processes and recommend improvements where needed.
  • Assist InfoSec Compliance team with implementation of Continuous Compliance.
  • Stay current with corporate policies, US, and state security regulations.
  • Be an information security representative on projects and represent security requirements during the project.
  • Research and identify industry information security best practices and help develop an action plan for executing changes as needed to enhance system security and ensure the integrity of the TriNet information.
  • Other projects and responsibilities may be added at the manager's discretion.
Education: Bachelor's degree in Business, Computer Science, Finance, or other related business discipline preferred, or equivalent work experience.
Training Requirements (licenses, programs, or certificates):
  • CRISC and PMP preferred.
  • 5+ years in business analysis.
  • Experience with US laws and regulations such as GLBA, HIPAA, and SOX.
  • Experience in Cloud computing is a plus.
  • Experience with security disciplines including Information Security, Data Privacy, and Regulatory Compliance.
Other Knowledge, Skills and Abilities:
  • Excellent verbal and written communication skills
  • Ability to communicate with employees at all levels of the organization
  • Excellent interpersonal skills
  • Excellent presentation and facilitation skills
  • A demonstrated commitment to high professional ethical standards and a diverse workplace
  • Ability to adapt to a fast paced continually changing business and work environment while managing multiple priorities
  • Proficient in Microsoft Office Suite
WORK ENVIRONMENT/OTHER INFORMATION (Travel required, physical requirements, on–call schedules, etc.)
  • Minimal travel required
  • Work in clean, pleasant, and comfortable office setting
  • The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Please Note: TriNet reserves the right to change or modify job duties and assignments at any time. The above job description is not all encompassing. Position functions and qualifications may vary depending on business necessity.

TriNet is an Equal Opportunity Employer and does not discriminate against applicants based on race, religion, color, disability, medical condition, legally protected genetic information, national origin, gender, sexual orientation, marital status, gender identity or expression, sex (including pregnancy, childbirth or related medical conditions), age, veteran status or other legally protected characteristics. Any applicant with a mental or physical disability who requires an accommodation during the application process should contact a company manager, a company officer or a TriNet HR representative to request such an accommodation.