Overview
Skills
Job Details
Title: Cyber Security Risk Analyst
Location: Remote - Candidates must live in the state of California
Duration: 6+ months
NOTE: Please make sure the candidate completes the attached test assessment
Overview:
The Cyber Security Risk Analyst is primarily responsible for ensuring comprehensive vendor and software risk assessments.
The candidate will work closely with Project Management Office teams and IT Procurement to understand requirements and collect information from vendors to complete fully informed assessments.
A secondary responsibility of the Cyber Security Risk Analyst is the collection and prioritization of vulnerability scan results for dissemination to other teams.
Key responsibilities:
Conducts vendor risk assessments and third-party risk management Works closely with project teams and IT procurement to determine the implementation plan and scope Works closely with IT Procurement and software requestors to gather information on desired use cases and available vendor security guidance.
Strong organizational skills required to inventory and track past assessments and schedule annual reassessments.
Strong understanding of vulnerability management, including CVSS scoring and CVE tracking Assignment of risk ratings and identification of mitigations.
Strong report writing and risk communication skills
Requirements:
California resident Local candidates (Bakersfield, CA) strongly preferred.
B.S. in Computer Science or Cyber Security strongly preferred Experience with NIST, ISO 27001, and SOC 2 security frameworks
Minimum 3 years providing risk assessment in a medium to large enterprise environment
Any one of the CISSP, CISA, CRISC, and CTPRP certifications is required