The Senior IT Security Analyst is part of the CyberSecurity Architecture and Engineering organization. The incumbent is responsible for two core functions within the enterprise: identification, investigation, design, and remediation of data security deficiencies across the organization, and day-to-day evaluations of existing data security solutions. Additional tasks include defining and escalating risks in the development and implementation of security solutions, which align into S-W security architecture. This includes evaluating applications across the company for potential security gaps. The Senior IT Security Analyst is expected to be fully aware of the enterprise's security goals as established by its stated policies, procedures, and guidelines and to actively work towards upholding those goals. The Senior IT Security Analyst is responsible for leading enterprise-wide projects/implementations that promote security best practices and improve existing security posture. Key functions of this role will be to evaluate risk, design controls, and protect data. The Senior IT Security Analyst will collaborate with business partners across the organization. This will include relationship building across functional roles in different departments and the opportunity to interface with a variety of business systems. This role will have a close working relationship with our Data Security Architect who will provide guidance and help drive team initiatives. The Senior IT Security Analyst will report directly to the CyberSecurity Data Security Manager (Process). Strategy & Planning Participate in the planning and designing of enterprise data security architecture, under the direction of the Data Security Manager, where appropriate. Participate in the creation of enterprise security documents (policies, standards, baselines, guidelines, and procedures) under the direction of the Data Security Manager, where appropriate. Participate in the planning and design of an enterprise Business Continuity Plan and Disaster Recovery Plan, under the direction of the Data Security Manager, where appropriate. Develop and communicate policies, procedures, and plans to executive team, staff, partners, customers, and stakeholders regarding technology and industry-specific laws. Acquisition & Deployment Maintain up-to-date detailed knowledge of the IT security industry including awareness of new or revised security solutions, improved security processes and the development of new attacks and threat vectors. Recommend additional security solutions or enhancements to existing security solutions to improve overall enterprise security. Perform the audit, integration, and initial configuration of all new security solutions and of any enhancements to existing security solutions in accordance with standard best operating procedures generically and the enterprise's security documents specifically. Operational Management Maintain up-to-date baselines for the secure configuration and operations of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Maintain operational configurations of all in-place security solutions as per the established baselines. Monitor all in-place security solutions for efficient and appropriate operations. Review logs and reports of all in-place devices, whether they be under direct control (i.e., security tools) or not (i.e., workstations, servers, network devices, etc.). Interpret the implications of that activity and devise plans for appropriate resolution. Participate in investigations into problematic activity. Collaborate with IT, security, human resources, and legal to ensure full legal compliance of company policies, procedures, forms, notices, and materials. Maintain a strong awareness of legislative changes or amendments to ensure ongoing and