Cyber Security Analyst

Role: Senior Manager Lead Information Security Assessor Location: Antonio, TX (5 days onsite) Duration: 6+ months
Overview: The Senior Manager Lead Information Security Assessor will serve as a Subject Matter Expert (SME) in Third Party Risk Management, leading complex third-party security assessments and audits. This role requires deep expertise in risk frameworks, regulatory requirements, and Archer platform usage. The ideal candidate will have strong leadership, communication, and analytical skills to drive risk mitigation strategies across the enterprise.
Responsibilities:

• Lead and manage third-party information security assessments and audits.
• Develop and maintain assessment methodologies aligned with regulatory and industry standards.
• Serve as SME for Third Party Risk Management Information Security Assessment, advising stakeholders on risk posture and mitigation strategies.
• Collaborate with procurement, legal, compliance, and business units to ensure vendor risk is appropriately managed.
• Utilize Archer to track, report, and manage assessment workflows and findings.
• Prepare and present risk assessment reports to senior leadership and governance committees.
• Mentor and guide junior assessors and team members.
• Continuously improve assessment processes and tools.

Qualifications:

• Minimum qualifications
  • Bachelor's degree in Information Security, Computer Science, or related field.
  • 10 years of experience conducting third-party audits/information security assessments.
  • Expertise in Third Party Risk Management frameworks and practices.
  • Familiarity with NIST, ISO 27001, SOC 2, and other security standards.
  • Strong understanding of regulatory requirements (e.g., GDPR, HIPAA, FFIEC).
  • Excellent written and oral communication skills.
• Preferred qualifications
  • Proficiency in Archer GRC platform.
  • Professional certifications: CISSP, CISA, or CRISC.
  • Experience in financial services.
  • Experience leading cross-functional teams.