Established in 1981, GUESS began as a jeans company and has since successfully grown into a global lifestyle brand. Guess?, Inc. designs, markets, distributes and licenses a lifestyle collection of contemporary apparel, denim, handbags, watches, eyewear, footwear and other related consumer products. Guess? products are distributed through branded Guess? stores as well as better department and specialty stores around the world. As of January 30, 2021, the Company directly operated 1,046 retail stores in the Americas, Europe and Asia. The Company’s partners and distributors operated 524 additional retail stores worldwide. As of January 30, 2021, the Company and its partners and distributors operated in approximately 100 countries worldwide. For more information about the Company, please visit www.guess.com.

The security analyst is ultimately responsible for the hands-on activities defined in the cybersecurity roadmap needed to protect the company's digital assets and business. S/He reports to the Cybersecurity Architect and helps him to execute the Cybersecurity roadmap.

The Cybersecurity Analyst is responsible for periodic cybersecurity activities:

• Takes care of the knowledge base documentation and policy repository maintenance
• Contributes to the definition and update of policies and procedures
• S/He is accountable for monitoring and tuning cybersecurity solutions
• Produce cybersecurity reports
• The Cybersecurity Analyst conducts penetration tests and vulnerability assessments
• Takes part in risk assessment activities
• Promotes synergies and monitoring activities with the other departments
• Takes part in the definition and measurement of KPIs
• Definition and maintenance of Incident Response playbooks
• The Cybersecurity Analyst takes part in each phase of the incident response process possibly coordinating

activities with the IT staff

• Verifies the security of third-party vendors to meet the company security requirements

EDUCATION & KNOWLEDGE

• Bachelor’s Degree in Computer Science, Information Technology, Engineering, or a related discipline
• Relevant industry certifications in the security and technical fields (e.g. CEH, OSCP, GIAC) are a plus
• Strong technical background is a must
• Security technology includes VA/PT, WAPT, XDR, firewall, intrusion prevention, web filtering, log monitoring information protection technologies
• Security concepts include network segmentation, DMZ, tiered architecture, and cryptography
• Strong background in Active Directory and networking are required Good knowledge of GNU/Linux and scripting languages

EXPERIENCE

• 4+ years of experience as an Information Security Analyst with hands-on in vulnerability assessments, penetration testing, and dealing with system and network technical teams, legal office, and internal audit

SKILLS

• Critical thinking with a strong capacity to cope with complex situations Result-driven and strong acute problem-solving skills
• Strong analytical skills Proactive and self-motivated Detail-oriented