Information Risk Analyst IT Security
Information Risk Analyst IT Security
Posted on :
13-03-2025
Employer Active
1 Vacancy
The job posting is outdated and position may be filled
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Share
Send me jobs like this
Job Alert
You will be updated with latest job alerts via emailValid email field required
Send jobs
Job Description
Information Risk Analyst (IT Security)
This role is for our client in the insurance industry focusing on identifying assessing and mitigating information security risks across cloud and onpremises environments. As part of the Information Risk team this role plays a critical function in ensuring the security and compliance of new technologies and IT changes. The team is responsible for conducting risk assessments defining security controls and ensuring adherence to industry standards and regulatory requirements. This position offers the opportunity to work on complex security challenges collaborate with crossfunctional teams and contribute to the organizations overall risk management strategy.
What is in it for you:
Salaried: $79 to $85 per hour.
Incorporated Business Rate: $95 to $101 per hour.
6month contract with possible 6 8 month extension based on business needs.
Fulltime position: 37.50 hours per week.
Weekday schedule from 9 am to 5 pm.
Hybrid work: 3 office days from Tuesday to Thursday.
Opportunity to work in a dynamic and professional environment.
Join a passionate and inclusive team of professionals.
Responsibilities:
Perform project and technology information risk assessments define controls and track control implementation.
Design document and implement BAU security controls for cloudbased infrastructure and services.
Evaluate products for security control implementation in cloud or onpremises environments.
Execute information risk assessment processes in compliance with global Information Risk Assessment methodology.
Ensure integration of the risk assessment process with architecture review project risk management business continuity disaster recovery and identity and access management.
Manage task priorities in coordination with risk owners.
Attend project meetings provide risk impact assessments and offer securityrelated guidance.
Ensure all risk assessments are peerreviewed for completeness before broader distribution.
Provide updates to stakeholders on assessment status and backlog items.
Support operational security activities including security incident response periodic access reviews and vulnerability management.
Deliver training to key stakeholders on information risk assessment processes.
Respond to audits regulatory reviews and risk control selfassessments.
Stay informed on emerging technologies evolving threats and industry best practices.
What you will need to succeed:
Degree in Computer Science Information Technology Software Engineering Business Administration or equivalent professional experience.
Relevant certifications such as CISSP CRISC CISM CISA or GSEC.
5 years of experience in Information Security including network security application security identity and access management IT operations security vulnerability management and cybersecurity.
5 years of experience in IT/Information Risk management covering vendor risk management project risk management IT audit or IT controls assessment.
Experience working within a Three Lines of Defense model including first line second line and/or third line functions.
Strong expertise in cloud security for IaaS PaaS and SaaS environments.
Deep understanding of security frameworks (ISO 27001 COBIT) laws and standards (NIST GDPR SarbanesOxley).
Knowledge of regulatory requirements including OSFI B10 and B20 regulations.
Understanding of thirdparty risk management.
Strong communication and influencing skills.
Ability to drive a securityfocused culture and influence stakeholders.
Analytical mindset with strong problemsolving abilities.
Effective presentation and facilitation skills for all organizational levels.
Strong collaboration and relationshipbuilding skills.
Excellent time management and organizational abilities.
Experience in the financial industry (preferred).
The ideal candidate will have substantial experience the ability to contribute immediately and a proactive approach to risk management.
Why Recruit Action
Recruit Action (agency permit: APprovides recruitment services through quality support and a personalized approach to job seekers and businesses. Only candidates who match hiring criteria will be contacted.
# MFCJP
Employment Type
Full Time
Key Skills
Report This Job
Disclaimer: Drjobpro.com is only a platform that connects job seekers and employers. Applicants are advised to conduct their own independent research into the credentials of the prospective employer.We always make certain that our clients do not endorse any request for money payments, thus we advise against sharing any personal or bank-related information with any third party. If you suspect fraud or malpractice, please contact us via contact us page.
