Cybersecurity Risk Compliance Analyst

  • Dallas, TX
  • Posted 1 day ago | Updated 2 hours ago

Overview

On Site
$55.00 - $60.00 per hour
Full Time
Contract - W2
Contract - TO FTE

Skills

risk assessment|risk management|cybersecurity|information security|NIST

Job Details



Job Title: Cybersecurity & Technology Risk Compliance Analyst


Location: Coppell, TX [OR] Tampa, FL ( Choose Any 1 )


Hybrid: 3 days Onsite & 2 days REMOTE


Duration: 6 Months (CONTRACT TO HIRE)



Skills & Experience Needed:



  • 5+ years' experience; prior experience in risk management, legal, compliance or auditing preferred.

  • Knowledge of financial services laws and regulations, particularly in the securities markets

  • Experience working at or with financial services regulators (e.g. SEC, CFTC, ESMA, etc.) is highly desirable

  • Previous audit experience preferred.

  • Familiarity with ISO/IEC 27001/27002:2013, NIST Cybersecurity Framework, NIST Special Publication (SP) 800-53 or other cyber, technology, financial services guidelines, frameworks and regulations is required.

  • Expert writing skills to support thorough documentation and communication of information security principles.

  • Proficient in PowerPoint and Word. Intermediate level experience with MS Excel. Has ability to create metrics

  • Understand the concepts of information technology risk and the different elements required that mitigate risk.

  • Knowledge of basic compliance principles and standards, including industry best practices and compliance controls

  • Proven knowledge of technical infrastructure, networks, databases and systems and how they affect an organization's cybersecurity and technology risk

  • CISA, CISM, CISSP, CRISC or equivalent certification.

  • The ideal candidate has done related work for at least five years and has a thorough knowledge of technology controls (IT and cyber) including how they are executed in today's IT threat landscape. This person should have a strong understanding of testing cyber security methodologies, frameworks, and regulations in the financial services sector.



Description:



  • Cybersecurity & Technology Risk Management Compliance Analyst ensures that we are complying with several cybersecurity regulatory requirements, cybersecurity industry standards, frameworks, and best practices.

  • This person is required to assist with the identification, development and ongoing mapping of internal cybersecurity and technology policies, procedures, and controls that demonstrate compliance with cybersecurity regulatory requirements and work with stakeholders to address gaps and inconsistencies.

  • This function provides transparency into the cybersecurity laws and regulations that govern our policies and facilitates mapping of those requirements to controls. In addition, the function monitors and organizes existing controls and their alignment in the enterprise GRC tool.



Responsibilities:



  • Perform mapping of regulatory requirements to policies, procedures, industry standards, frameworks, and existing controls

  • Review policies and procedures that demonstrate compliance with regulatory requirements and work to address gaps and inconsistencies.

  • Continue to develop and maintain a comprehensive library of applicable cybersecurity laws and regulations, as well as requirements and resulting controls.

  • Monitor regulatory trends, guidance and new regulations which impact cybersecurity and require enhancements to the existing control framework.

  • Prepare reports on the status of the program to appropriate governance structure(s) and senior management.

  • Support the facilitation of impact assessments to evaluate new or changing regulations and readiness for compliance.

  • Develop action plans for development and enhancement of cybersecurity controls and provide ongoing support and monitoring of the implementation of those controls.

  • Evaluate policies and procedures to identify and address any compliance gaps or inconsistencies within the control framework and alignment with applicable regulations.

  • Understand cyber and IT best practices including knowledge of frameworks, guidelines, and regulations (i.e., NIST Cybersecurity Framework, FFIEC, NYSDFS)

  • Ensure cybersecurity and technology risk management meets all industry regulations, standards, and compliance requirements.




Dexian is a leading provider of staffing, IT, and workforce solutions with over 12,000 employees and 70 locations worldwide. As one of the largest IT staffing companies and the 2nd largest minority-owned staffing company in the U.S., Dexian was formed in 2023 through the merger of DISYS and Signature Consultants. Combining the best elements of its core companies, Dexian's platform connects talent, technology, and organizations to produce game-changing results that help everyone achieve their ambitions and goals.


Dexian's brands include Dexian DISYS, Dexian Signature Consultants, Dexian Government Solutions, Dexian Talent Development and Dexian IT Solutions. Visit to learn more.


Dexian is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status.


Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About Dexian DISYS