Cyber and Information Security Analyst

Denver, CO - USA

Monthly Salary: Not Disclosed

Posted on: 2 hours ago

Vacancies: 1 Vacancy

Job Summary

Cybersecurity Analyst

Location: Denver CO
Contract Length: 12 months

Prefer someone local

No OPT candidate

Summary
The organization values strong cybersecurity risk management practices as essential to a mature global security program. The Cyber and Information Security Risk Management Analyst helps uphold these standards by conducting cybersecurity risk assessments advising stakeholders on how to address identified risks and contributing to the development of effective mitigation strategies. This role requires strong business acumen sound judgment technical expertise and the ability to communicate clearly and confidently with stakeholders at all levels.

Collaborate with information technology and other business unit personnel to identify cybersecurity risks associated with current and planned projects.
Perform assessments of external party information security controls to ensure they meet or exceed our clients information security risk management requirements for the services to be provided.
Determine information security risk profiles for various vendor and business partner services using questionnaires relevant industry best practices and standards and knowledge of our clients policies.
Recommend solutions to eliminate reduce or mitigate cybersecurity risk and communicate said solutions to external parties and/or internal business stakeholders as appropriate.
Provide direction and guidance as needed to internal project stakeholders concerning statutory regulatory and our clients policy and program requirements.
Record pertinent documentation and communications for all assessments in our clients online information technology risk management platform.
Report status of engagements to Global Cyber and Information Security management project managers and other business stakeholders as appropriate.
Assist in enforcing information security policies standards and procedures. Review requests for exceptions to security policies and provide recommendations to management.
Research and advocate new technologies architectures and products that will support security requirements for the enterprise and its customers business partners and vendors.

Requirements

3 years years of Related Professional Experience including cybersecurity risk management IT security control design and/or IT security control design audit experience.
Bachelors degree in information systems computer science or related field preferred.
Certified Information Systems Security Professional (CISSP) Certified Information Systems Manager (CISM) Certified Information Systems Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) credentials preferred. Global Information Assurance Certification Security Essentials (GSEC) CompTIA Security or similar credentials considered.
Basic knowledge of industry frameworks regulations legislation and audit methodologies including SOC 1 SOC 2 ISO 27000 SIG CAIQ NIST Cybersecurity Framework Sarbanes-Oxley (SOX) PCI-DSS GDPR and various federal and state privacy laws.

Cybersecurity Analyst Location: Denver CO Contract Length: 12 months Prefer someone local No OPT candidate Summary The organization values strong cybersecurity risk management practices as essential to a mature global security program. The Cyber and Information Security Risk Management Analyst help...

Cybersecurity Analyst

Location: Denver CO
Contract Length: 12 months

Prefer someone local

Collaborate with information technology and other business unit personnel to identify cybersecurity risks associated with current and planned projects.
Perform assessments of external party information security controls to ensure they meet or exceed our clients information security risk management requirements for the services to be provided.
Determine information security risk profiles for various vendor and business partner services using questionnaires relevant industry best practices and standards and knowledge of our clients policies.
Recommend solutions to eliminate reduce or mitigate cybersecurity risk and communicate said solutions to external parties and/or internal business stakeholders as appropriate.
Provide direction and guidance as needed to internal project stakeholders concerning statutory regulatory and our clients policy and program requirements.
Record pertinent documentation and communications for all assessments in our clients online information technology risk management platform.
Report status of engagements to Global Cyber and Information Security management project managers and other business stakeholders as appropriate.
Assist in enforcing information security policies standards and procedures. Review requests for exceptions to security policies and provide recommendations to management.
Research and advocate new technologies architectures and products that will support security requirements for the enterprise and its customers business partners and vendors.

Requirements

3 years years of Related Professional Experience including cybersecurity risk management IT security control design and/or IT security control design audit experience.
Bachelors degree in information systems computer science or related field preferred.
Certified Information Systems Security Professional (CISSP) Certified Information Systems Manager (CISM) Certified Information Systems Auditor (CISA) or Certified in Risk and Information Systems Control (CRISC) credentials preferred. Global Information Assurance Certification Security Essentials (GSEC) CompTIA Security or similar credentials considered.
Basic knowledge of industry frameworks regulations legislation and audit methodologies including SOC 1 SOC 2 ISO 27000 SIG CAIQ NIST Cybersecurity Framework Sarbanes-Oxley (SOX) PCI-DSS GDPR and various federal and state privacy laws.