WHO ARE WE LOOKING FOR
We’re looking for an Information Security Analyst in Korea. This role is responsible for analyzing and managing the information security risks as well as coordinating implementation of Corporate Information Security (CIS) mandated security programs to protect Nike’s digital assets. You will also work closely with legal and privacy teams to ensure Nike’s compliance with various regulatory requirements. The ideal candidate has a good working knowledge of information security principles, best practices, and excellent communication skills.
WHAT WILL YOU WORK ON
If this is you, you’ll be working with global Corporate Information Security (CIS) teams primarily for Korea with possible stretch opportunity to APLA (Asia Pacific Latin America) and performing these key tasks:
•Assess the information security risks in accordance with NISP (Nike Information Security Program) and local regulations and collaborate with global CIS to drive remediation of vulnerabilities and risk gaps.
•Analyze cyber security events and incidents then follow Nike processes to report, remediate, and recover.
•Perform risk assessments on partners and vendor connections and enforce their compliance with Nike’s security requirements.
•Become an advocate of NIKE Information security procedures, policies, processes, and standards as a mechanism to enable the business effectively while managing risks appropriately.
•Identify, document, and elevate visibility of information security risks, where business direction creates potential for exposure to employee, athlete, and business sensitive data streams.
•Perform regular review of KISP (Korea Information Security Program) against NISP and make relevant updates to ensure their alignments.
•Train users and promote security awareness across the board to help maintain high level of system security and improve IT controls to protect Nike’s assets.
•Collaborate closely with Legal and Privacy to ensure that security measures are considered appropriately throughout the lifecycle of systems and solutions.
•Develop the territory specific DR plan and support tech teams to evaluate its efficacy in liaison with CIS TRM (Technical Recovery Management) team.
•Perform regular security reviews on IT controls in place. E.g., PII data management, security settings in the systems, network, etc.
•Work closely with Korea TechOps team to ensure all IT systems and resources are well covered by global security solutions.
•Liaise with CIS and global technology operation teams to perform the yearly assessment to maintain the Korea ISMS.
•Stay current on information security technologies, trends, standards, and best practices.
WHO WILL YOU WORK WITH
You will report into the Director of Information Security in Korea and will work cross-functionally within the Corporate Information Security (CIS) teams and across Nike. You will regularly meet with Nike business and technology teams.