Cyber Security Control Analyst

Overview

On Site
Up to $60
Contract - Independent
Contract - W2
Contract - 12 Month(s)

Skills

Cyber
FPL
Risk Register
Cybersecurity
Controls
frameworks
EDR
Antimalware

Job Details

Title: Cyber Security Control Analyst

Location: Juno Beach, FL

Type: Contract

Duration: Long Term

Scope:

  • Develop and document remediation recommendations
  • Communicate findings & recommendations to key stakeholders in the form of presentation
  • Work with business stakeholders to resolve compliance issues
  • Develop an understanding of, and familiarity with, the Cyber Security controls currently in place at FPL.
  • Lead the Exception Management Process (ongoing monthly task).
  • Lead the Issues Management Process (on going monthly task).
  • Manage the Risk Register (on going monthly task).
  • Evaluate the evidence of compliance provided by crown jewel applications owners against controls in place.
  • Identify and documents any gaps and exposures in the evidence of compliance.
  • Review identified gaps and exposures with crown jewel applications owners.
  • Develop Remediation Recommendations for identified gaps and exposures.
  • Track and report on remediation implementation.
  • Document the completion and validation of implemented remediation.
  • Review current controls in place with GRC team and validate against new/emerging regulatory or other compliance requirements.
  • Work with crown jewel applications owners to identify changing/evolving
  • cybersecurity controls requirements.

Qualifications

  • 5 years of experience in Cybersecurity Controls Auditing
  • Must have a solid IT and Cybersecurity background
  • Good understanding of Cybersecurity frameworks and compliance requirements
  • Possess excellent verbal and written communication skills
  • Able to work with minimal supervision
  • Detail oriented with good time management skills
  • Outgoing and able to foster collaborative relationships

Responsibilities

  • Review and become familiar with internal security policies
  • Interact with key stakeholders to identify changing/evolving cybersecurity controls requirements
  • Review cybersecurity controls in place for critical systems including but not limited to:
    • Password and authentication
    • Identity Lifecycle Management
    • Access Control
    • Vulnerability Management and Software Updates
    • Endpoint Detection and Response (EDR)
    • AntivirAntimalware Software
    • Monitoring & Alerting
  • Document gaps identified
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.