Risk and Governance Analyst

Overview

On Site
USD 73-78
Contract - W2

Skills

CISM
COBIT
PHYSICAL SECURITY
ITIL

Job Details

Currently, we are looking for talented resources for one of our listed clients. If interested please reply to me with your updated resume or feel free to reach out to me for more details at



On-Site role



Job Description:

  • Work with various business groups to identify, measure, manage and report organizational and enterprise risk to the various organizations and stakeholders throughout the company.
  • Utilize Cyber and Physical security expertise to recommend mitigations for identified risks.

LEVEL OF RESPONSIBILITY

  • Complex responsibilities related to primary focus of job area.
  • Uses best practices and in-depth business knowledge to solve complex problems and improve products or services.
  • May adapt procedures, processes and techniques to meet the more complex requirements of position.

ESSENTIAL FUNCTIONS

  • Conduct comprehensive Risk Assessments for both cyber and physical security threats.
  • Participate in development and maintenance of formal security policies, procedures, and methodologies utilized for information systems and IT/OT infrastructure technologies for the business.
  • Identify and document security risks, exposures, and procedures to enhance the organization's security posture.
  • Evaluate system architectures and recommend security architectural control design to enhance the organization's security posture.
  • Prepare security analysis reports and findings reports.
  • Collect and compile historical data on system access and generate reports and analysis.
  • Coordinate the resolution of issues in the risk register.
  • Maintain understanding of future direction of application system technologies/products and participate in the determination of tactical and strategic upgrades necessary to meet business requirements.
  • Support multiple, complex, and/or advanced application systems and business processes.
  • Participate in the development and delivery of security training and awareness.
  • Coordinate internal and third-party audits.
  • Prepare detailed reports and presentations for senior management and stakeholders.
  • Interpret internal/external business issues and recommend best practices as a member of various governance teams.
  • Recommend improvements to business processes as supported by application systems.
  • All other duties as assigned.

KNOWLEDGE, SKILLS AND ABILITIES (KSAS)

  • Working knowledge of procedures for the securing of information systems and IT/OT infrastructure technologies.
  • Working knowledge of hardware, software, networks, operating systems, databases and applications.
  • In depth understanding of System/Solution Delivery Lifecycle (SDLC).
  • In depth understanding of SOX, NIST, NERC, COBIT, ITIL, ISO and/or similar information governance frameworks.
  • Ability to develop effective briefings and materials to present to all organizational levels.
  • In depth knowledge of risk assessments, application security, control design, vulnerability assessments or penetration testing.
  • Excellent verbal and written communication skills.
  • Strong leadership skills.
  • Proven analytical and program solving skills.
  • Ability to work in a fast-paced team environment.
  • Ability to investigate and analyze information and draw conclusions.
  • Ability to plan, implement, test and troubleshoot system software.
  • Ability to communicate technical guidance and instruction to users on the use of systems and/or applications.
  • Understand the role of application security in supporting business processes.

EDUCATION / WORK EXPERIENCE

  • Bachelor's Degree OR 8 years of experience in directly related positions
  • Additionally, at least 4 years' experience must have been in a risk management, governance or security role

LICENSES AND CERTIFICATIONS

  • CISSP, CISM or CRISC are desired

WORKING CONDITIONS

  • Office environment with extensive use of a computer
  • May require travel
  • Ability to work outside of normal workday/workweek to meet deadlines and maintain support levels

SPECIAL SAFETY

  • Contractor will not be required to drive in order to perform their job duties
  • Contractor is not required to perform any safety sensitive duties

About us:

At our organization, we take our mission and values to heart! We are on a mission to offer more and better jobs all over the world! Our goal is to care for you while you care for our clients and get you paid the highest pay possible. All our associates working with us are expected to embrace our RACE values: R - Results Matter, A- Approachable, C - Care, and E - Emergency i.e. work with a sense of urgency.



For more relevant job opportunities please visit our website:

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.