Job Description

Job no: 498336
Work type: Full Time
Location: HarborFront Office
Categories: Analyst

Summary of the role The primary responsibility of the Governance Analyst is to perform duties in one or more of the following areas: vulnerability management, cyber data governance, risk and verification, cyber policy/standards/standard operating procedures development, and penetration testing and red teaming. All duties are to be performed in accordance with departmental and Las Vegas Sands Corp.’s policies, practices, and procedures. .JOB SCOPE

• This Analyst is expected to perform within the areas of at least one of the following:
  • Cyber governance, risk and verification which performs risk assessments, system security and industrial control system zone security plans including listing controls, gaps in implemented controls and tracking remediation of gaps, and provides input to the risk register
  • Network and Operating Systems Security Configuration assessment which performs security configuration reviews including hardening controls, firewall rules review, web/application security configurations
  • Penetration testing and red teaming which includes performing security testing to identify security vulnerabilities on LVSC applications and environment, providing recommendations for remediation, and tracking and remediating found issues.
  • Cyber policy/standard and standard operating procedure creation, review, distribution, and maintenance
  • Vulnerability management which includes successfully scanning the LVSC computing environment for secure configurations and vulnerabilities, researching and eliminating false positives, tracking and remediating found issues, and tracking and performing the exception processes
• Consistent and regular attendance is an essential function of this job.
• Performs other related duties as assigned.

JOB REQUIREMENTS

• Degree or diploma with at least 3 - 5 years cyber security hands-on experience in one or more of the areas listed in place of a degree.
• Preferrable to have a current and in good standing CISSP or similar certification, and Offensive Security (OSCP, OSWE, OSEP) or Crest (CRT, CCT) certifications
• Demonstrated experience in at least 1 area in the following list:
  • Cyber Vulnerability Management
  • Cyber Governance, Risk and Verification
  • Cyber Policy/Standard/Standard Operating Procedures
  • Cyber Penetration Testing and Red Teaming
• Working knowledge of threats and vulnerabilities and their significance to cyber risk, network operations, and end-point security
• Strong interpersonal skills with the ability to communicate effectively with guests and other Team Members of different backgrounds and levels of experience.

You agree that it is a condition of employment that you adhere to and abide by all rules, regulations, policies and procedures including without limitation the rules of conduct of the Company. It is the Company’s preference to hire individuals who are fully vaccinated. If you are not fully vaccinated but have:

• Begun the vaccination process and are awaiting the 2nd/3rd vaccination appointment, or are within the 14 day period prior to being classified as fully vaccinated; or
• Are certified to be medically ineligible for vaccination against COVID-19 by a medical professional;

Please present proof of the above. Your understanding and support is much appreciated. Advertised: 14 Jun 2022 Singapore Standard Time
Applications close: