Senior Information Security Analyst Third Party Risk Assessment
Share
Job Location:
Monthly Salary:
Posted on:
30+ days ago
Vacancies:
1 Vacancy
Job Summary
Bachelors degree in Computer Science Information Security Cybersecurity Risk Management or a related field.
Minimum 5 years of professional experience in third-party risk assessment within cybersecurity or information risk management.
Understanding of relevant information security frameworks including related regulatory compliance requirements such as ISO 27001/2 (including ISO 27017 & 18) FedRAMP SOC 2 Trust Services Criteria PCI DSS NIST CSF.
Solid understanding of risk assessment methodologies and best practices.
Ability to synthesize and communicate complex risk findings to both technical and non-technical audiences.
Detail-oriented process-driven and capable of managing multiple vendor assessments concurrently.
Experience with tools such as Coupa OneTrust JIRA and Coverbase is a plus.
Professional certifications in Information Security or Risk Management (e.g. CISA CISM CISSP CRISC) is a plus.
Minimum 5 years of professional experience in third-party risk assessment within cybersecurity or information risk management.
Understanding of relevant information security frameworks including related regulatory compliance requirements such as ISO 27001/2 (including ISO 27017 & 18) FedRAMP SOC 2 Trust Services Criteria PCI DSS NIST CSF.
Solid understanding of risk assessment methodologies and best practices.
Ability to synthesize and communicate complex risk findings to both technical and non-technical audiences.
Detail-oriented process-driven and capable of managing multiple vendor assessments concurrently.
Experience with tools such as Coupa OneTrust JIRA and Coverbase is a plus.
Professional certifications in Information Security or Risk Management (e.g. CISA CISM CISSP CRISC) is a plus.
Key Skills
- IT Experience
- Splunk
- IDS
- Cybersecurity
- FIPS
- PCI
- NIST Standards
- Information Security
- Encryption
- FISMA
- RMF
- Siem
