Kelly IT Resources has an immediate need for an IT Risk Analyst! This is a three month contract to hire opportunity which requires experience with Cyber Security documentation & policies.
Custodianship of Cyber Security Policy and supporting documents. This position will also have other compliance related responsibilities as well as contribute to the security awareness program. Custodianship of all current and future security related policies, standards and procedures using the National Institute of Standards and Technology framework
Custodianship of all current and future security related policies, standards and procedures using NIST framework.
Assist in write documentation for systems security requirements using the NIST framework.
Provide expertise and recommendations in domestic, international and industry rules and regulations to ensure compliance.
Create metrics for reporting to senior management. This shall include the creation of statistical data and the transformation to an executive level report.
Act as security compliance authority over security requests and exceptions, researching potential security impacts and approving or denying requests as appropriate.
Collaborate with Chief and Deputy Legal Counsel, VP of Internal Audit and VP of Corporate Responsibility on cross-department matters.
Write clear concise security alerts and work with Corporate Communications to distribute company wide.
Assist, create, publish and document Security Training Education awareness materials as well as distribute and present instruction.
Provide content for ITT monthly newsletter.
Administer and develop the Cyber Security Operations web site and content.
4 Year Information Technology or Security Degree or equivalent.
Minimum of 2 years experience with cyber security, including writing, creating security policies.
Demonstrate strong written and verbal communication and interpersonal skills.
High standard of professionalism and ethics as this position interacts with executive management.
Knowledge of security program frameworks, such as NIST.
Solid understanding knowledge of rules and regulations related to information security and data confidentiality (SOX, HIPPA, etc.)
Strong organizational skills – ability to multi-task and change priorities with short notice.
Strong research skills and ability to apply industry concepts to new and existing documents.
Ability to communicate to all levels of the organization.
Solid business analysis skills.
Availability to work off hours as needed.
Availability to travel and represent the department on short notice.