Overview
On Site
Hybrid
Depends on Experience
Contract - Independent
Contract - W2
Contract - 6 Month(s)
Skills
Risk Management
CISSP
IT Audit/Security
"Third-Party"
GRC
Job Details
Principal Cybersecurity Risk Analyst
12 Months contract - Later hire
Newark , NJ 07101 Hybrid model
Job description:
- The Principal Cybersecurity Risk Analyst is responsible for leading and performing third-party, project, and technology risk assessments to ensure proper protection of company data and systems.
- This role oversees mitigation plans, communicates risks to technical and business stakeholders, and ensures remediation activities are completed with adequate evidence. The analyst will act as a security advisor, support sourcing and contract reviews, and collaborate with internal cybersecurity teams to identify evolving threats.
- Responsibilities also include improving TPRM processes, leading security assessments, reviewing vendor security controls, developing metrics and reporting, and mentoring junior analysts.
Qualifications (Summary)
- 5+ years in Risk Management and 7+ years in IT Audit/Security
- Experience with Third-Party Risk Management and GRC tools
- Strong knowledge of security domains (IAM, Cloud, Vulnerability Mgmt, Network Security, BC/DR, etc.)
- CISSP, CISA, CRISC, or equivalent preferred
- Strong communication, analytical, mentoring, and stakeholder management skills
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.