Overview
On Site
USD 74.00 - 80.00 per hour
Contract - W2
Skills
Financial Services
LOS
Risk Management
Risk Assessment
Continuous Improvement
Reporting
Cyber Security
FISMA
NIST SP 800 Series
Publications
IT Risk Management
IT Risk
Information Security Governance
Regulatory Compliance
Analytical Skill
Documentation
Communication
ISACA
CISA
CISSP
MEAN Stack
Customer Service
Training And Development
SAP BASIS
Job Details
Software Guidance & Assistance, Inc. (SGA) is searching for a Risk Analyst for a CONTRACT assignment with one of our premier Financial Services clients in San Francisco, CA; Los Angeles, CA; or Salt Lake City, UT.
The Risk Analyst will play a key role in supporting the firm's information security governance and risk management programs. This position requires experience with FISMA compliance and the NIST 800 series to assess, document, and communicate technical risk across applications and infrastructure. The analyst will evaluate controls, conduct risk assessments, interpret results, and guide teams through the governance lifecycle.
Responsibilities:
Perform risk assessments aligned with NIST 800 and FISMA frameworks.
Conduct technical evaluations of systems and products to identify and quantify risk.
Review assessment results, validate findings, and ensure accurate remediation tracking.
Support the cyber risk governance process, coordinating with control owners and stakeholders.
Communicate risk posture and control gaps to both technical and non-technical audiences.
Contribute to continuous improvement of risk methodologies, templates, and reporting.
Required Skills:
Background in NIST Cybersecurity Framework, FISMA, and related NIST 800 Special Publications.
Proven experience performing and documenting technical risk assessments.
Strong understanding of information security governance and compliance processes.
Excellent analytical, documentation, and communication skills.
Certifications such as CRISC, CISA, CISSP, or equivalent are highly preferred.
SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.
The Risk Analyst will play a key role in supporting the firm's information security governance and risk management programs. This position requires experience with FISMA compliance and the NIST 800 series to assess, document, and communicate technical risk across applications and infrastructure. The analyst will evaluate controls, conduct risk assessments, interpret results, and guide teams through the governance lifecycle.
Responsibilities:
Perform risk assessments aligned with NIST 800 and FISMA frameworks.
Conduct technical evaluations of systems and products to identify and quantify risk.
Review assessment results, validate findings, and ensure accurate remediation tracking.
Support the cyber risk governance process, coordinating with control owners and stakeholders.
Communicate risk posture and control gaps to both technical and non-technical audiences.
Contribute to continuous improvement of risk methodologies, templates, and reporting.
Required Skills:
Background in NIST Cybersecurity Framework, FISMA, and related NIST 800 Special Publications.
Proven experience performing and documenting technical risk assessments.
Strong understanding of information security governance and compliance processes.
Excellent analytical, documentation, and communication skills.
Certifications such as CRISC, CISA, CISSP, or equivalent are highly preferred.
SGA is a technology and resource solutions provider driven to stand out. We are a women-owned business. Our mission: to solve big IT problems with a more personal, boutique approach. Each year, we match consultants like you to more than 1,000 engagements. When we say let's work better together, we mean it. You'll join a diverse team built on these core values: customer service, employee development, and quality and integrity in everything we do. Be yourself, love what you do and find your passion at work. Please find us at .
SGA is an Equal Opportunity Employer and does not discriminate on the basis of Race, Color, Sex, Sexual Orientation, Gender Identity, Religion, National Origin, Disability, Veteran Status, Age, Marital Status, Pregnancy, Genetic Information, or Other Legally Protected Status. We are committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, and our services, programs, and activities. Please visit our company to request an accommodation or assistance regarding our policy.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.