Information Security Coordinator

Corra is the global digital agency that fashion, beauty, and lifestyle brands trust to create luxury
commerce experiences. Over the past 15 years, we have built a reputation for award-winning
design, disciplined execution, and innovative thinking.

With technical expertise concentrated on the Magento, SAP Commerce Cloud (Hybris), and
Shopify Plus platforms, we produce memorable journeys that captivate customers and elevate
brands to new heights.

Winner of multiple Crain’s Best Places to Work Awards, we offer exciting and challenging projects
with industry leading companies, competitive health benefits, flexible work arrangements,
ongoing career development, company outings and tons of other bonuses.

Corra is looking for an Information Security Coordinator who will work with our staff to make sure
that our teams are adhering to our Information Security policy. In this role, you will act as an
enforcer for Corra’s InfoSec compliance requirements. As an Information Security Coordinator,
you must be very knowledgeable about InfoSec issues especially those involving PCI/DSS and
GDPR. You will also work with our teams to make sure they are following our processes and
procedures. You should have at least 3 years experience in the ecommerce industry, strong
technical skills, and a demonstrated flair for customer service. Your responsibility will be to lead
your client and team to that next level!

Responsibilities

  • Enforces Information Security policies for assigned geographic territory

  • Maintain a list or database of all critical technologies and the users that have access to
    these technologies.

  • Local representative with local admin access

  • Controls access to wifi access points and local network

  • Conducts routine security audits

  • Reviews and approves information security related requests

  • Monitors and analyzes security alerts

  • Responsible for enacting incident response policies

  • Responsible for receiving information security policy violation reports

  • Oversees the work of outsourced IT services form an Information Security perspective

Requirements

  • Bachelor’s degree (BA) from a four-year college or university; or one to two years related
    experience and/or training; or equivalent combination of education and experience.

  • A minimum of two years experience in technology roles that provide a background in IT
    areas such as software development, infrastructure, operations, and incident response.

  • A minimum of one year experience acting in a security incident response role with
    responsibility of analyzing alerts/threats, responding accordingly, developing incident
    response plans and procedures.

  • Knowledge of any of the following platforms a strong plus: Magento, Shopify, SAP
    Commerce Cloud

  • Previous experience identifying indicators of compromise and writing custom alerts.

  • Previous supervisory experience and proven success in managing technical teams.

  • Knowledgeable in security technologies, procedures, and best practices to include
    functions such as Web Application Firewalls, Intrusion Detection Systems, File Integrity
    Monitoring, SIEM, and Vulnerability Scanning

  • Experience providing technical requirements to various development and infrastructure
    teams.

  • Experience documenting incident cases and managing lessons learned meetings.

  • Experience automating repeatable tasks.

  • Experience integrating security technologies and procedures into continuous
    delivery/devops environments.

  • Information Security Incident Response Handler certification preferred.

  • Experience with Agile a strong plus