Cyber Security Risk Analyst (IT)
Are you looking for a stimulating and dynamic job Would you like to be part of a team that believes in your potential and part of a great company that will help you advance in your career This is the job for you! We are currently looking for a Cyber Security Risk Analyst for one of our clients in the insurance industry.
What is in it for you:
Hourly salary of $72 to $94.
12month contract with the possibility of extension until June 2025.
Fulltime: 37.50 hours per week.
Daytime schedule with occasional early morning and late evening calls.
Hybrid work: 2 remote days and 3 office days.
Join a passionate and inclusive team of professionals.
Responsibilities:
Provide oversight and effective challenge for technology within GWAM segment including exceptions and deviations from policies and standards.
Provide opinions and conduct secondline reviews of risk assessments for thirdparty vendors/partners projects collaborating with senior management to ensure informed consent and understanding of risk treatments.
Monitor global technology risk and control assessments reviewing key risks and identified gaps and reporting on management corrective action plans as needed.
Recommend mitigation strategies and provide guidance on interpreting standards.
Develop oversight and effective challenge mechanisms for the first line of defense within the GWAM segment including exception handling and risk acceptance procedures.
What you will need to succeed:
5 years of evolving experience and expertise in the areas of Information Security/Business Resiliency/Technology Risk strategies 3rd party/vendor risk principles and processes.
Previous risk advisory consulting experience is preferred.
Sound knowledge of best practices of various aspects of Integrated Risk Management (IRM).
Strong communication skills and ability to articulate highly technical information for nontechnologists including executives.
Recognized professional designations in Information Security Audit and Business Continuity (e.g. CISSP CISA etc.).
Various IT and Information/Cyber Security frameworks and standards (e.g. ISO 27K NIST CSF NIST 800 series COBIT ITIL etc.).
Security software IT audit and security programming/coding and/or compliance experience.
2nd line of defense experience.
Familiarity with regulatory environments in the U.S. Canada and Europe.
Experience with major cloud service providers like AWS Azure or GCP is preferred.
Why Recruit Action
Recruit Action (agency permit: AP2000003) provides recruitment services through quality support and a personalized approach to job seekers and businesses. Only candidates who match hiring criteria will be contacted.
# MFCJP