Cyber and Information Security Analyst
CRGUnited States1 day ago
ContractInformation Technology, Analyst
Track This Job
Add this job to your tracking list to:
- Monitor application status and updates
- Change status (Applied, Interview, Offer, etc.)
- Add personal notes and comments
- Set reminders for follow-ups
- Track your entire application journey
Save This Job
Add this job to your saved collection to:
- Access easily from your saved jobs dashboard
- Review job details later without searching again
- Compare with other saved opportunities
- Keep a collection of interesting positions
- Receive notifications about saved jobs before they expire
AI-Powered Job Summary
Get a concise overview of key job requirements, responsibilities, and qualifications in seconds.
Pro Tip: Use this feature to quickly decide if a job matches your skills before reading the full description.
Location: Denver, Colorado
Contract Length: 12 months
Pay Rate: $53.00+ hourly
Summary
Our global retail client has been in operation for over 100 years and is ranked among the top 25 publicly traded apparel companies in the world. This company is committed to making a positive impact through sustainable clothing for active lifestyles! With a focus on integrity, simplicity, growth and teamwork; this company has shown their commitment to over 40,000 employees by winning awards like “World’s Most Ethical Company” and “World’s Top Female Friendly Company”.
The organization values strong cybersecurity risk management practices as essential to a mature global security program. The Cyber and Information Security Risk Management Analyst helps uphold these standards by conducting cybersecurity risk assessments, advising stakeholders on how to address identified risks, and contributing to the development of effective mitigation strategies. This role requires strong business acumen, sound judgment, technical expertise, and the ability to communicate clearly and confidently with stakeholders at all levels.
Contract Length: 12 months
Pay Rate: $53.00+ hourly
Summary
Our global retail client has been in operation for over 100 years and is ranked among the top 25 publicly traded apparel companies in the world. This company is committed to making a positive impact through sustainable clothing for active lifestyles! With a focus on integrity, simplicity, growth and teamwork; this company has shown their commitment to over 40,000 employees by winning awards like “World’s Most Ethical Company” and “World’s Top Female Friendly Company”.
The organization values strong cybersecurity risk management practices as essential to a mature global security program. The Cyber and Information Security Risk Management Analyst helps uphold these standards by conducting cybersecurity risk assessments, advising stakeholders on how to address identified risks, and contributing to the development of effective mitigation strategies. This role requires strong business acumen, sound judgment, technical expertise, and the ability to communicate clearly and confidently with stakeholders at all levels.
- Collaborate with information technology and other business unit personnel to identify cybersecurity risks associated with current and planned projects.
- Perform assessments of external party information security controls to ensure they meet or exceed our client’s information security risk management requirements for the services to be provided.
- Determine information security risk profiles for various vendor and business partner services using questionnaires, relevant industry best practices and standards, and knowledge of our client's policies.
- Recommend solutions to eliminate, reduce, or mitigate cybersecurity risk, and communicate said solutions to external parties and/or internal business stakeholders as appropriate.
- Provide direction and guidance as needed to internal project stakeholders concerning statutory, regulatory, and our client's policy and program requirements.
- Record pertinent documentation and communications for all assessments in our client’s online information technology risk management platform.
- Report status of engagements to Global Cyber and Information Security management, project managers, and other business stakeholders as appropriate.
- Assist in enforcing information security policies, standards and procedures. Review requests for exceptions to security policies and provide recommendations to management.
- Research and advocate new technologies, architectures, and products that will support security requirements for the enterprise and its customers, business partners, and vendors.
- 3+ years years of Related Professional Experience including cybersecurity risk management, IT security control design, and/or IT security control design audit experience.
- Bachelor’s degree in information systems, computer science, or related field preferred.
- Certified Information Systems Security Professional (CISSP), Certified Information Systems Manager (CISM), Certified Information Systems Auditor (CISA), or Certified in Risk and Information Systems Control (CRISC) credentials preferred. Global Information Assurance Certification Security Essentials (GSEC), CompTIA Security+, or similar credentials considered.
- Basic knowledge of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27000, SIG, CAIQ, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, GDPR, and various federal and state privacy laws.
Key Skills
Ranked by relevanceReady to apply?
Join CRG and take your career to the next level!
Application takes less than 5 minutes