Cyber Security Risk Analyst - Remote

Remote - Must work EST business hours.

Pay: $60-$75/hour, based on experience. W2 candidates only. Sponsorship is not available for this positions.

Duration:6 months with extensions based on client need and performance.

Overview:

Seeking a Cyber Security Risk Analyst to join a small team overseeing third-party risk management functions for a leading consulting firm.

This role focuses on establishing the strategy and procedures for conducting third-part risk assessments and audits.

A strong communicator who can both be heads down in analyzing data and be a strong presenter to senior leadership is needed.

Qualifications:

Demonstrated knowledge of cybersecurity frameworks and controls is required.

Relevant certifications such as CRISC, CISA, CISM or CISSP are highly preferred.

Bachelor's degree is required.

2+ years of relevant experience is required.

Prior consulting firm experience is a plus.

Strong Excel skills, including the usage of pivot tables and v-lookups is required.

PowerPoint Deck Creation Skills Are Required.

Prior experience with third party risk management is highly desired.

By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at Privacy Policy

Description:

=========

A minimum of 6-9 years of experience in a security / risk related role analyst role, with a demonstrated track record of success in developing and implementing risk processes and controls.

The Analyst is responsible for supporting the TPRM Cyber Strategy team. They will work closely and report to the Senior Manager, TPRM - Cyber Risk.

Key responsibilities include:

• Process Development: Support the assessment of adding new risk domains to the current TPRM program, developing and designing new processes, supporting implementation
• Manage project documentation, create key project deliverables (project initiation, scope management, issues lists, sub-team status reports, communications and communication plans, project plans, resource planning, documentation, specifications)
• Extract and aggregate data from different sources in order to prepare analyses
• Provide Cyber SME support responding to ad hoc requests/inquiries as needed
• Technology: Drafting Business Requirements, perform testing of new systems as required- Create documentation for information security processes, procedures, and solutions
  
  

Skills:

=====

Knowledge of relevant risk management concepts, relevant cybersecurity frameworks, and leading practices is required

Knowledge and experience Third Party Risk Management is strongly preferred

Knowledge of Data Privacy risk concepts and regulations is strongly preferred

Strong consulting skills, including the ability to communicate complex security concepts to non-technical stakeholders.

Strong communication skills, both verbal and written, in English, with the ability to adjust your style to suit different perspectives and seniority levels

Excellent organization capabilities, including the ability to initiate tasks independently and see them through to completion.

Proficient in rational decision making based on data, facts, and logical reasoning

Ability to create work product-focused materials / outputs;

Exceptional time management to meet your responsibilities in a complex and largely autonomous work environment.

Strong Organizational and Project Management Skills: Ability to manage multiple tasks, prioritize effectively, and drive projects to high-quality results.

Intermediate Excel and PowerPoint is a plus

Consulting experience is a plus

Education:

========

A bachelor's degree or equivalent experience is required. Relevant certifications such as CRISC, CISA, CISM, CISSP are strongly preferred.