Information Security Analyst / Administrator

Job Title : Information Security Analyst / Administrator

Location : Mason OH 45040 (Hybrid - 2 days a week (Tue & Thurs))

Duration : 6 Months contract

Payrate : $37 / hr on W2.

JOB TITLE : Information Security Analyst

The Information Security Analyst will serve a critical role in supporting EyeMed Vision Care information security and compliance requirements and initiatives. This role is focused on providing oversight, driving, facilitating and coordinating the management of vulnerabilities across the enterprise, rather than performing hands-on technical remediation. The analyst will work closely with internal teams and stakeholders to ensure timely remediation efforts, providing visibility into risk status through tracking and reporting. The analyst will also be responsible for compiling and delivering progress updates and reports to leadership and responding to client inquiries related to the organization s vulnerability management and remediation efforts. Overall, the analyst will contribute to the organization s compliance with audits, attestations, and regulatory obligations such as HIPAA, HITRUST, SSAE-18, and PCI.

Major Duties and Responsibilities

• Vulnerability Assessment & Risk Analysis
• Monitor and analyze vulnerability assessment data to identify and communicate technical risks to the organization.
• Support identification and impact classification of newly discovered vulnerabilities.
• Execute and support vulnerability assessments, penetration testing, and social engineering activities.
• Conduct analysis, aggregation, and reporting of vulnerability data from scanning tools and platforms.
• Brief Information Security (IS) leadership on assessment results and potential risks.
• Threat Intelligence & Security Advisory
• Provide insights into the emerging cyber threat landscape, including threat actor tactics, techniques, and procedures (TTPs).
• Manage and utilize IS tools such as :
• Data Loss Prevention (DLP)
• Code Scanners
• External Security Profiles
• Internal & External Scanning Tools (e.g., Nessus Pro, Qualys)
• Security scoring platforms (e.g., BitSight, Security Scorecard, SSL Labs)
• Remediation & Security Operations
• Facilitate vulnerability management processes by tracking and coordinating remediation across multiple teams.
• Ensure timely closure of security gaps by partnering with application, infrastructure, and operations teams.
• Provide regular updates and risk summaries to leadership on remediation status.
• Collaborate with cross-functional teams to embed security into existing IT and operational workflows.
• Participate in the Software Development Life Cycle (SDLC) to ensure security is integrated by default and design.
• Client, Audit & Compliance Support
• Support responses to client and third-party security inquiries, questionnaires, and audit requests.
• Assist in regulatory and compliance efforts, contributing to audits, attestations, and certifications (e.g., SOC, PCI, ISO).
• Support leadership in identifying gaps in vulnerability management services and planning improvements.
• Collaboration & Continuous Improvement
• Develop strong working relationships across business, technology, and client teams to ensure alignment and accountability.
• Continue self-development of skills, knowledge, and capabilities to support the IS function.

Basic Qualifications

Preferred Qualifications

BitSight, Security Scorecard, SSL Labs