BCD Travel logo
BCD Travel

BCD Travel is a top, privately owned global travel management company under the BCD Group. Established in 2006, BCD Travel supports individuals in traveling eff

Analyst II – Information Security

Location

India

Posted

3 days ago

Salary

0

Seniority

Senior

Bachelor DegreeEnglish

Job Description

Analyst II – Information Security

BCD Travel

• Collaborate with internal departments on Client related matters and provide detailed feedback from Clients back to BCD Information Security and the business • Be the point of contact for complaints and escalate issues as appropriate • Coordinate and champion Security Request for Proposal(RFP) database repository • Lead the development of RFP responses and evaluate responses for accuracy • Create and facilitate responses to customer inquiries originating from RFP and assessments • Keep up to date Information security databases/repositories using Ombud, Archer, OneTouch or other tools and collect and maintain necessary audit evidence • Lead internal and external security communication efforts within BCD Travel, provide formal responses to customer security inquiries, complete and participate in Client security assessments and handle information security audits, risk remediation and mitigation efforts • Be knowledgeable on Artificial Intelligence (AI) and possess skills to sift through data using analytical tools and techniques • Collaborate with stakeholders to ensure AI aligns with organizational values and expectations • Ensure AI controls are aligned, validating output results to ensure accuracy and integrity of information • Identify and report on AI-related risks and concerns associated with internal AI use to support clients and business related assessments • Work with the development, business, sales and legal teams and advise on design and maintenance of effective information security controls compliant with ISO 27001, NIST 800-53, PCI, SOC, GDPR • Support the Information Security goals and challenges of our organization by providing a bridge from the centralized security function to the business, and assist with creation of applicable standard operating procedures

Job Requirements

  • Bachelor’s Degree (B.A., B.S.), or equivalent combination of education and experience either in Information Protection, Computer Science, Management Information Systems, or related curriculum
  • Professional experience required, preferably with information security, sales, legal, account and supplier management, travel industry and RFP support
  • You have relevant general Information Technology experience
  • Knowledge of ISO Compliance Series, NIST, Artificial Intelligence (AI), PCI, ITIL
  • Must be able to use pre-established guidelines, limited experience and judgment to plan and accomplish goals
  • Strong organizational, time management, decision making, and problem solving skills

Benefits

  • Flexible working hours and work-from-home or remote opportunities
  • Opportunities to grow your skillset and career
  • Generous vacation days so you can rest and recharge
  • A compensation package that feels fair to you, including mental, physical, and financial wellbeing tools
  • Travel industry professional perks and discounts
  • An inclusive work environment where diversity is celebrated

Related Job Pages

More Security Analyst Jobs

Proficio logo

Information Security Analyst Level II – SIEM

Proficio

Proficio provides 24/7 security monitoring, threat detection, alerting and response services.

Full TimeRemoteTeam 51-200H1B Sponsor

• Recommend refinement for detection rules to improve accuracy and reduce false positives across SIEM and EDR platforms. • Conduct investigations into security events using tools such as Splunk, Elastic, ArcSight, and XDR platforms (Cisco XDR, Cortex XDR). • Leverage AI to analyze security trends, automate processes, and identify new patterns of threat behavior. • Develop and document detection blueprints to enhance high-fidelity alerting for security threats and compliance risks. • Assist with SOAR platform workflows to improve incident response automation. • Collaborate with internal teams to address gaps in detection visibility and implement best practice mitigations. • Provide mentorship and knowledge sharing to analysts at Level I.

India
₹1,100K / year
Entrust logo

Senior Security Compliance Analyst – PCI DSS, U.S. Fed

Entrust

We are an innovative leader in identity-centric security solutions, providing integrated, AI-enabled offerings.

Full TimeRemoteTeam 1,001-5,000H1B Sponsor

• Lead and support end-to-end compliance efforts across multiple environments, including readiness assessments, audits, and continuous monitoring activities • Leading PCI DSS compliance-related activities and certification • Supporting U.S. Federal readiness efforts, including gap assessments against NIST SP 800-53 • Maintaining required evidence artifacts and ensuring traceability of evidence • Interpreting and operationalizing compliance requirements into actionable control activities for engineering and operations • Serving as SME for PCI DSS and NIST 800-53 compliance • Supporting development of FedRAMP artifacts • Partnering with control owners to ensure controls meet PCI DSS and NIST 800-53 requirements • Supporting external audits by preparing evidence and responding to auditor requests • Driving coordination with third parties to ensure shared control alignment • Ensuring audit readiness through continuous proactive gap assessments and control testing throughout the year • Identifying, assessing, and communicating compliance and security risks to stakeholders • Identifying, tracking, and driving closure of audit findings and control deficiencies • Contributing to the development and maintenance of security policies, standards, and procedures

Minnesota
$119.1K - $174.6K / year
Bolster, Inc logo

Security Analyst I – Trust & Safety

Bolster, Inc

Detect, Monitor, and Take Down Fake Sites and Content at Internet Scale.

Full TimeRemoteTeam 11-50H1B No Sponsor

• Review the latest threats targeting Bolster's customers and prospects. • Analyse online content across multiple platforms. • Train Bolster's AI engine based on the latest threats. • Investigate online activity and infrastructure to determine the fraud source. • Engage with hosting providers, registrars, registries and platforms to shut down online threats. • Track ongoing enforcement efforts and content change. • Provide support and written responses to customer queries. • Support sales and customer success teams with threat intelligence. • Generate monthly and ad-hoc reports summarizing metrics and trends. • Respond to security alerts to support issue resolution. • Research security issues and work with internal teams. • Help manage and improve the issue-tracking process. • Create and enhance operational metrics.

India
Mindworks logo

Senior Red Team and Offensive Security Analyst

Mindworks

Múltiplas soluções de TI para o seu negócio. Outsourcing, Infraestrutura, Conectividade e Cibersegurança.

Full TimeRemoteTeam 51-200Since 1999H1B No Sponsor

• Perform tests on web applications, APIs, internal and external infrastructure, cloud environments, and Active Directory. • Conduct manual vulnerability validations, controlled exploitation, authorized post-exploitation, and impact analysis. • Review technical findings, evidence, severity assessments, recommendations, and reports produced by the team. • Serve as an operational second opinion for defining processes and work instructions. • Support sensitive technical decisions related to significant findings, false positives, critical risks, and operational validations. • Review and standardize methodologies, playbooks, checklists, templates, and internal procedures. • Support phishing, smishing, and vishing campaigns, including planning, technical validation, result analysis, and recommendations. • Support OSINT activities, password analysis, credential exposure reviews, and monitoring of the Deep and Dark Web. • Contribute to the design of future services, including adversary simulations, tabletop exercises, ransomware simulations, and full Red Team exercises. • Support the definition of technical scope, effort estimates, and consultative discussions with clients.

Brazil