Mid Career (2+ years of experience)
Security Risk Analyst
Our Client is looking for a Security Risk Analyst to be responsible for developing and documenting system security requirements and ensuring compliance validation.
This is a hands-on role perfoming 3rd party vendor risk assessments and application risk assessments.
Communicate with business and IT regarding security risks.
Assess the adequacy of a vendors security program to safeguard clients data.
Follow the well defined risk assessment process in place.
Utilize knowledge of the security trends in industry.
Exhibit strong interpersonal relationships with architecture team, business partners, project managers, the IT delivery teams and Quality Assurance.
Serve as advisor and consultant to business units in planning and coordinating systems security analysis, design, and implementation/enhancement projects to
automate processing or improve business systems.
Focus on developing and improving security processes, assisting in metrics development, both within the technology and business organizations.
Conduct analysis for application and vendor risk assessments.
Draw conclusions and make recommendations.
Contribute to security architecture and business strategic planning by providing objective feedback, insight, and recommendations.
Responsible for leading investigation for incident response and review of system logs.
Provide support for production issues such as monitoring production cycles, performing updates, and testing fixes;
3rd party risk assessment experience.
Application risk assessment experience.
CISSP or CISA or CISM
BA or BS degree in Systems, IT, Business Management, or related degree preferred; or equivalent experience
5+ years of strong Analyst or Project Management experience, with demonstrated use of the project management “life cycle,” including tools and methodologies.
Job keywords/tags: Risk Assessments , Application Risk Assessment , CISSP , CISA , CISM