Job Description

Position: Lead, Security Analyst (IT Risk Management)

Duration : 3m C2H

Location : Hybrid; 1 day onsite at HQ (Dublin CA)

PR : $55.00

Conversion Salary Expectations : $150,000/YR

Day to Day:

Insight Global is looking for a Lead Security Analyst to support a large retail client in Dublin, CA. This senior member will lead and execute third-party security risk management and governance processes, including risk assessments, tracking mitigation efforts, and developing risk metrics and reports. The role involves leading security risk-related projects and enhancing programs such as third-party risk assessments, insider threat management, updating security policies and standards, and executing security awareness programs for both corporate and overseas offices. This role is hybrid and the candidate must be local to the Bay Area, coming onsite to the Dublin office at least 1x/wk.

Must Haves:

• 5+ years of experience within Information Technology, with at least 3 years in Security and/or Risk Management. Bachelor’s degree preferred or equivalent combination of education and relevant experience.
• Strong understanding of security governance, compliance, and risk management principles
• Excellent analytical, organizational, and communication skills
• Strong project management skills
• Proficient in Microsoft Word, Excel, PowerPoint

Plusses :

• Certifications: CISSP (Certified Information Systems Security Professional), CRISC (Certified in Risk and Information Systems Control)
• Working knowledge of UNIX and Windows (client operates in an Azure cloud environment)
• Experience with any of the following: Firewalls, VPN, PKI, IPS, Oracle Suite, MS SQL, Virtualization Security
• Software programming skills

Key Responsibilities:

• Provides subject matter expertise in all aspects of risk management, including performing risk assessments to proactively identify security issues/vulnerabilities and recommend remediation strategies
• Leads third-party risk management programs and identifies improvements across the enterprise
• Identifies and implements enhancements to the Cybersecurity Risk Management program through process optimization, solutions, policies, procedures, KPIs, and other techniques
• Reviews contracts and agreements to ensure necessary security controls are included for the protection of company assets
• Develops standards to support vendor selection and RFP processes; participates in product and vendor selection to provide expertise on information security risk and compliance
• Maintains risk register and develops Cybersecurity Risk Management metrics and reports; collaborates with Compliance Manager, Secure SDLC Manager, Information Security, and IT groups to gather and analyze metrics
• Leads information security awareness programs by regularly conducting exercises to educate employees on information security and best practices
• Monitors current and proposed laws, regulations, industry standards, and ethical requirements related to information security and privacy

PR : $50-55.00/HR

Conversion Salary Expectations : $140,000-150,000/YR

Job Tags

Similar Jobs