Security Risk Management Senior Analyst - Vertex Global Solutions
Yonkers, NY 10701
About the Job
Our client, one of New York's leading academic health systems, is looking for a Security Risk Management Senior Analyst for a remote position.
Job Title: Security Risk Management Senior Analyst
Salary: $160,000.00/YR
Position: Direct Hire
Location: Remote
Department: Information Security
Reports To : Director of Cybersecurity
The Security Risk Management Senior Analyst will be responsible for ensuring the organization's data remains secure and all risks, vulnerabilities and defects are managed, tracked, and remediated according to policy and/or best practices. The Information Security Risk Management Senior Analyst must have experience with risk management concepts and processes. The Information Security Risk Management Senior Analyst will be responsible for ensuring the organization remains secure and that all identified gaps are managed.
Responsibilities include:
Enterprise experience requirements include:
Job Title: Security Risk Management Senior Analyst
Salary: $160,000.00/YR
Position: Direct Hire
Location: Remote
Department: Information Security
Reports To : Director of Cybersecurity
The Security Risk Management Senior Analyst will be responsible for ensuring the organization's data remains secure and all risks, vulnerabilities and defects are managed, tracked, and remediated according to policy and/or best practices. The Information Security Risk Management Senior Analyst must have experience with risk management concepts and processes. The Information Security Risk Management Senior Analyst will be responsible for ensuring the organization remains secure and that all identified gaps are managed.
Responsibilities include:
- Coordinate and with facilitate the risk management program within specified policy, standard and procedures.
- Communicate with auditors and regulators during compliance and regulatory reviews.
- Participate in information security audits ensuring technical compliance with security related regulatory requirements (HIPAA, PCI, etc.).
- Collaborate with peers to ensure operational excellence.
- Contribute to or help lead risk assessments.
- Identify and prioritize risk based on impact and likelihood.
- Work directly with key business leaders to facilitate information risk analysis and risk management processes, identify acceptable levels of risk, and establish roles and responsibilities with regards to information risk management.
- Execute the organization's risk procedures.
- Develop reports and evaluate the results of the vendor assessment.
- Maintain risk registries.
- Maintain and monitor Information Security Risk Exception process to ensure identification of areas of non-compliance.
- Develop key risk indicators and dash boarding.
- Participate in Policy/Standard development and security awareness training.
- Familiarity with relevant regulatory requirements
- Strong interpersonal and oral/written communication skills, able to build relationships at all levels.
Enterprise experience requirements include:
- Experience coordinating and facilitating a risk management program within specified policy, standard, and procedures.
- Past participation in policy/standard development and in audits for technical compliance
- Experience creating and overseeing dashboards and reports to assess vendor performance.
- Familiarity with relevant regulatory requirements
- Excellent interpersonal and communications skills
Source : Vertex Global Solutions