Risk Analyst (Tampa, FL) - Technology Risk Management

Location: Tampa, FL
Date Posted: 10-01-2018
Job Title: Risk Analyst
Location:  Tampa, FL

DURATION: 12 months contract

Position Summary:
The Technology Risk Management Security Program Governance ensures client is complying with best practices as defined in NIST Cyber Security Framework. Additional staffing is required to assist with the tracking and closure of cyber related gaps and opportunities. The ideal candidate has been on the job for five or more years, and has a thorough knowledge of the IT threat landscape, including emerging and advanced persistent threats, as well as controls and technology to minimize attack surfaces. The incumbent should have a strong understanding of cyber security methodologies, frameworks, and regulations.
Principal Responsibilities:
•        Review issues, findings or action items from internal and external assessments to determine scope, impact and potential responsible department(s). Meet with subject matter experts and process owners to determine the appropriate course of action and remediation plans.
•        Assess if appropriate controls have been implemented to mitigate external assessment risk, and to test external assessment compliance with regulations and policies requirements.
•        Enforce processes for continuous external assessment monitoring.
•        2 - 5 years of experience writing policy-related documentation, reports and / or presentations is required.
•        2 - 5 years of experience creating and / or revising documents that articulate, interpret, and explain cybersecurity, physical security, environmental security or business continuity management policies, procedures, job aids and processes is preferred.
•        2 - 5 years of information systems, technology, security, business continuity management, or audit experience in financial markets experience is preferred
Knowledge and Skills Required:
•        Demonstrated flexibility, cooperation, collegiality and teamwork abilities
•        Excellent communication, writing and interpersonal skills
•        Extremely strong attention to detail
•        Confidence and presence when working with senior management
•        Proven knowledge of technical infrastructure, networks, databases and systems and how they affect an organization's cybersecurity risk
•        Proven knowledge of security methodologies, policies, standards and best practices
•        Strong technology background, including concepts such as application development, change management, and enterprise infrastructure
•        Ability to explain and articulate technical concepts using both technical and non-technical language
•        Multi-tasking and follow-up skills
•        Proficient in PowerPoint, Excel and Word
this job portal is powered by CATS