Cyber Risk Specialist-RCSA

Overview

On Site
$65 - $70 per hour
Contract - W2

Skills

Cyber Risk Specialist-RCSA

Job Details



Job Title: Cyber Risk Specialist-RCSA


Job Location: Farmington Hills, MI 48331

Onsite Requirements:



  • 3+ years of Cyber Risk

  • 3+ years of RCSA


Job Description:



  • Risk Control Self-Assessment Second Line of Defense Execution - Cyber Security Domain


Responsibilities:



  • NIST Cybersecurity Framework & FFIEC Information Security Handbook Alignment Program Objective - Execution of comprehensive Risk Control Self-Assessment (RCSA) programs that align organizational cybersecurity controls with NIST Cybersecurity Framework (CSF) requirements and FFIEC Information Security Handbook guidelines, ensuring regulatory compliance and effective risk mitigation across financial services environments.

  • Challenge and Enhance Framework Integration to NIST CSF and FFIEC Information Security Handbook

  • Challenge and Support Enhancements to Control Framework development

  • Control Design Documentation

  • Remediation Planning: Develop actionable plans for control enhancement and gap closure


Stakeholder Engagement & Communication



  • Risk and Governance Reporting: Develop risk reporting and governance frameworks

  • Cross-Functional Collaboration: Facilitate coordination between IT, Risk, Compliance, and Business units

  • Training and Awareness: Conduct educational sessions on risk assessment processes and regulatory requirements


Ongoing Administrative Tasks



  • Risk Register Maintenance: Establish centralized risk and control repositories

  • Continuous Monitoring: Implement ongoing control monitoring and exception reporting

  • Data Analytics: Utilize data-driven insights for risk trend analysis and predictive assessments

  • Integration Planning: Coordinate with existing enterprise risk management and audit systems.

  • Regulatory Change Management: Monitor and implement emerging regulatory requirements

  • Documentation Standards: Maintain comprehensive audit trails and evidence repositories


Expected Deliverables



  • Comprehensive RCSA methodology documentation aligned with NIST CSF and FFIEC requirements

  • Risk and control matrices with clear ownership and accountability structures

  • Control testing procedures and validation frameworks

  • Gap remediation roadmaps with prioritized implementation timelines

  • Training materials and knowledge transfer documentation for internal teams

  • Executive dashboards and reporting mechanisms for ongoing risk visibility


Education and Skills Required:



  • Education/Degree: Bachelor's Level Degree

  • Primary Skill(s): Cyber Risk and Security Controls




  • **3rd party and subcontract staffing agencies are not eligible for partnership on this position. 3rd party subcontractors need not apply.

  • This position requires candidates to be eligible to work in the United States, directly for an employer, without sponsorship now or anytime in the future**

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.