Senior Associate Risk Management Analyst

Harrisburg, PA - USA

Monthly Salary: $ 85100 - 161700

Posted on: Yesterday

Vacancies: 1 Vacancy

Job Summary

We are the leading provider of professional services to the middle market globally our purpose is to instill confidence in a world of change empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled culture and talent experience and our ability to be compelling to our clients. Youll find an environment that inspires and empowers you to thrive both personally and professionally. Theres no one like you and thats why theres nowhere like RSM.

We are seeking a detail-oriented and analytical Risk Management Analyst to join our cybersecurity team. The ideal candidate will possess strong critical thinking skills and a proactive approach to identifying assessing and mitigating vulnerabilities within clients systems and networks. This role is essential in ensuring the security and integrity of our clients information assets and will involve collaboration with various teams to enhance their overall security posture.

Key Responsibilities:

Conduct regular vulnerability assessments and scans to identify potential security weaknesses in systems applications and networks.
Administer vulnerability management and automated patching SaaS applications.
Analyze and prioritize vulnerabilities based on risk assessment potential impact and exploitability utilizing critical thinking to make informed decisions.
Collaborate with managed and client IT teams to support remediation of identified vulnerabilities.
Collaborate with SOC engineering and service delivery teams to respond to requests and help advise on various technical matters including vulnerabilities emerging threats and technologies and solutions for common problems related to current processes.
Monitor and evaluate emerging threats in the cybersecurity landscape adapting strategies as necessary.
Develop and maintain documentation related to vulnerability management processes findings and remediation efforts.
Prepare and present reports on vulnerability status trends and remediation progress to stakeholders using clear and concise communication.
Assist in the development and implementation of security policies standards and procedures related to vulnerability management and patching.
Participate in incident response activities as needed providing insights and analysis to support investigations.
Leverage data analytics platforms to create reports query emerging threats and analyze trends to help minimize risk and improve posture across a large client base.

Preferred Qualifications:

Bachelors degree in Computer Science Information Technology Cybersecurity or a related field.
3-5 years of experience in information technology cybersecurity or a related field.
Strong understanding of vulnerability assessment tools and methodologies (e.g. Nessus Qualys Rapid7).
Experience with data analytics platforms (eg. PowerBI) and structured data sets.
Experience with cloud platforms (AWS Azure) is a plus.
Familiarity with security frameworks and standards (e.g. NIST ISO 27001 CIS Controls) is a plus.
Excellent critical thinking and problem-solving skills with the ability to analyze complex situations and make sound decisions.
Strong communication skills both written and verbal with the ability to convey technical information to non-technical stakeholders.
Relevant certifications (e.g. Sec AWS Cloud Practitioner) are a plus.

At RSM we offer a competitive benefits and compensation package for all our offer flexibility in your schedule empowering you to balance lifes demands while also maintaining your ability to serve more about our total rewards at applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs practices or observances; sex (including pregnancy or disabilities related to nursing); gender; sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past current or prospective service in the US uniformed service; US Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable federal state or local law.

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/ is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application interview or otherwise participate in the recruiting process please call us at or send us an email at .

RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying excluding internships you may be eligible for hire as an experienced associate.

RSM will consider for employment qualified applicants with arrest or conviction records. For those living in California or applying to a position in California please click here for additional information.

At RSM an employees pay at any point in their career is intended to reflect their experiences performance and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including but not limited to education skills work experience certifications location etc. As such pay for the successful candidate(s) could fall anywhere within the stated range.

Compensation Range: $85100 - $161700

Individualsselected for this role will be eligible for a discretionary bonus based on firm and individual performance.

Required Experience:

Senior IC

Key Responsibilities:

Conduct regular vulnerability assessments and scans to identify potential security weaknesses in systems applications and networks.
Administer vulnerability management and automated patching SaaS applications.
Analyze and prioritize vulnerabilities based on risk assessment potential impact and exploitability utilizing critical thinking to make informed decisions.
Collaborate with managed and client IT teams to support remediation of identified vulnerabilities.
Collaborate with SOC engineering and service delivery teams to respond to requests and help advise on various technical matters including vulnerabilities emerging threats and technologies and solutions for common problems related to current processes.
Monitor and evaluate emerging threats in the cybersecurity landscape adapting strategies as necessary.
Develop and maintain documentation related to vulnerability management processes findings and remediation efforts.
Prepare and present reports on vulnerability status trends and remediation progress to stakeholders using clear and concise communication.
Assist in the development and implementation of security policies standards and procedures related to vulnerability management and patching.
Participate in incident response activities as needed providing insights and analysis to support investigations.
Leverage data analytics platforms to create reports query emerging threats and analyze trends to help minimize risk and improve posture across a large client base.

Preferred Qualifications:

Bachelors degree in Computer Science Information Technology Cybersecurity or a related field.
3-5 years of experience in information technology cybersecurity or a related field.
Strong understanding of vulnerability assessment tools and methodologies (e.g. Nessus Qualys Rapid7).
Experience with data analytics platforms (eg. PowerBI) and structured data sets.
Experience with cloud platforms (AWS Azure) is a plus.
Familiarity with security frameworks and standards (e.g. NIST ISO 27001 CIS Controls) is a plus.
Excellent critical thinking and problem-solving skills with the ability to analyze complex situations and make sound decisions.
Strong communication skills both written and verbal with the ability to convey technical information to non-technical stakeholders.
Relevant certifications (e.g. Sec AWS Cloud Practitioner) are a plus.