Security Risk Analyst AI

Description
- AI security review experience
- AI adaptation knowledge for security risk review experience
The EITS Security Risk Analyst will interface between the CISO's strategic and process-based activities and the work of the technology-focused analysts, engineers and administrators in the IT organization. The Security Risk Analyst must be able to translate the IT-risk requirements and constraints of the business into technical control requirements and specifications, as well as develop metrics for ongoing performance measurement and reporting. The Security Risk Analyst coordinates the IT organization's technical activities to implement and manage security.
The EITS Security Risk Analyst is part of the Enterprise Information Technology Services, Information Security and Risk Management team and will work at an enterprise level to ensure a consistent delivery of information security and risk management services. This individual will act as a subject matter expert to the assigned business units on matters regarding information security and compliance with HIPAA, Joint Commission, DSRIP, COBIT, and state privacy laws.
General Tasks and Responsibilities Will Include:
Support Information Security and Risk Management by maintaining and enforcing the Information Security and Risk Management framework/methodology, including execution of risk analysis and risk mitigation strategies.
Manage the process of gathering, analyzing, and assessing the current and future threat landscape, as well as providing the CISO with a realistic overview of risks and threats in the enterprise environment.
Exhibit best practice risk management skills through effective internal risk controls, risk monitoring, risk assessment, and improvement of risk management processes.
Document and maintain the enterprise security risk governance methodology and risk management policy, process, and procedure.
Work with various stakeholders to identify information asset owners to classify data and systems as part of a control framework implementation.
Organize and perform the enterprise security risk assessment and gap analysis for all technologies, products, and functions introduced, including maintaining risk project work plans to measure and manage progress.
Track and document all internal risk reviews, assessments, risk acceptances, and security exceptions in a GRC tool.
Work with the enterprise architecture team to ensure that there is a convergence of business, technical, and security requirements; liaise with IT management to align existing technical installed base and skills with future architectural requirements.
Develop a strong working relationship with the security engineering team to develop and implement controls and configurations aligned with security policies and legal, regulatory, and audit requirements
Serve as the information security liaison and subject matter expert for all relevant EMR and PHI-related security risks.
Conduct or participate in all relevant audits and risk assessment activities (whether operational risk, legal/compliance risk, reputational risk, or information security risk).
Aid in the planning and execution of risk remediation activities, including the identification of practical, cost-effective solutions.
Facilitate team meetings between stakeholders, project leaders, and the Information Technology teams.
Attend regular team, management, and project meetings and provide both verbal and written reports to the Leadership Team as required. This may include coordination with and support of an Operational Risk Committee.
Keep informed on current threats and industry regulations.
Knowledgeable In:
Healthcare industry experience required with understanding of EMR systems and data privacy issues related to PHI
Experience with reviewing IT solution requirements and security controls implementation
A strong understanding of the business impact of security tools, technologies, and policies.
Knowledge and experience working with a GRC Software tool
Strong working knowledge of HIPAA, Joint Commission, CMS, and other regulatory legislation pertinent to the healthcare industry
Working knowledge of information security frameworks such as NIST CSF, HITECH, ISO27001/27002, PCI DSS, and COBIT
Experience in conducting and responding to information security assessments and audits.
Strong analytical skills and the ability to resolve complex security vulnerabilities and design compensating controls
Skills:
Security, Risk management, Risk assessment, Risk analysis, Information security, Audit, Compliance, Cyber security, NIST, Cloud, Third party risk, SIEM, IT audit, IT risk, Reporting, Incident response, Network security, Firewall, Security architecture, Vulnerability, Vulnerability management, Framework, Application security
Top Skills Details:
Security, Risk management, Risk assessment, Risk analysis, Information security, Audit, Compliance, Cyber security, NIST, Cloud, Third party risk, SIEM, IT audit, IT risk, Reporting, Incident response, Network security
Additional Skills & Qualifications:
Must possess a high degree of integrity and trust, along with the ability to work independently
Participate in special projects as needed and perform other duties as assigned
Must be able to work independently as well as work as part of a fast-moving team
Must be able to work at various locations when necessary, along with working various shifts
Educational Level:
A bachelor's degree in information systems
CISSP, CISA, CRISC, or other relevant security qualification
Years Of Experience:
A minimum of seven years of IT experience, at least 5 years dedicated to IT Security Risk Management, Risk Audit/Assessment, and/or Security and/or Data Privacy Investigation, with at least two years in a supervisory capacity.
Experience Level:
Expert Level
Job Type & Location
This is a Contract position based out of New York, NY.
Pay and Benefits
The pay range for this position is $70.00 - $85.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following:
Medical, dental & vision
Critical Illness, Accident, and Hospital
401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available
Life Insurance (Voluntary Life & AD&D for the employee and dependents)
Short and long-term disability
Health Spending Account (HSA)
Transportation benefits
Employee Assistance Program
Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in New York,NY.
Application Deadline
This position is anticipated to close on May 15, 2026.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.

The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.

About TEKsystems and TEKsystems Global Services

We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.

The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.