Overview
On Site
USD 60.00 - 70.00 per hour
Full Time
Skills
Retail
Business Operations
Relationship Management
Exceed
Documentation
IT Risk
IT Risk Management
Reporting
Information Security Management
Management
Research
Risk Analysis
Risk Assessment
Risk Management
IT Audit
Computer Science
CISSP
Information Security
CISM
CISA
Information Systems
ISACA
Auditing
System On A Chip
ISO 9000
Sarbanes-Oxley
PCI DSS
Privacy
Cyber Security
Information Technology
Oracle Linux
Insurance
Taxes
Life Insurance
Collaboration
Partnership
Business Transformation
Law
Job Details
Top Skills' Details
1) 5+ years of information security risk management and/or IT audit experience, preferably in a large corporate enterprise.
2) Functional knowledge of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27000, SIG, CAIQ, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, GDPR, and various federal and state privacy laws.
3) Ideally, some experience in a technical engineering or security role prior to moving into Risk Analyst work.
Description
Our Retail Client recognizes the value that formal cybersecurity risk management processes provide to the company as key enablers of a mature global information security program, and this Global Cyber and Information Security Risk Management team furthers that value by developing the models, policies, and standards used to design, implement, and maintain information technology solutions that meet business needs while incorporating the key principles of information security. The Senior Analyst, Cyber and Information Security Risk Management supports these processes by ensuring that cybersecurity risks associated with complex business operations are within acceptable tolerances. S/he will independently perform cybersecurity risk assessments, provide direction and guidance to stakeholders concerning the handling of security risks associated with assessment findings, and design appropriate risk mitigation strategies.
The Senior Analyst, Cyber and Information Security Risk Management role demands business insight, subject matter expertise, decisiveness, tact, courage, relationship management skills, technical acuity, sound professional judgment, and the ability to effectively communicate with audiences at all levels, both inside and outside of the organization.
How You Will Make a Difference:
1. Collaborate with information technology and other business unit personnel to identify cybersecurity risks associated with highly complex projects and other business initiatives.
2. Perform assessments of external party information security controls to ensure they meet or exceed the company's information security risk management requirements for the services to be provided.
3. Determine information security risk profiles for various vendor and business partner services using questionnaires, relevant industry best practices and standards, and knowledge of company policies.
4. Recommend solutions to eliminate, reduce, or mitigate cybersecurity risk, and communicate said solutions to external parties and/or internal business stakeholders as appropriate.
5. Provide direction and guidance as needed to internal project stakeholders concerning statutory, regulatory, and company policy and program requirements.
6. Record pertinent documentation and communications for all assessments in the organization's online information technology risk management platform.
7. Report status of engagements to Global Cyber and Information Security management, project managers, and other business stakeholders as appropriate.
8. Assist in enforcing information security policies, standards, and procedures. Review requests for exceptions to security policies and provide recommendations to management.
9. Research and advocate new technologies, architectures, and products that will support security requirements for the enterprise and its customers, business partners, and vendors.
10. Provide cybersecurity risk management and process execution guidance to junior team members.
11. Perform other information security risk management tasks as assigned.
Skills
Risk analysis, Risk management, Security, Risk assessment, Nist, Information security, Cyber security
Top Skills Details
Risk analysis,Risk management,Security,Risk assessment,Nist,Information security,Cyber security
Additional Skills & Qualifications
Educational/ Position Requirements:
5+ years of information security risk management and/or IT audit experience, preferably in a large corporate enterprise.
Bachelor's degree in information systems, computer science, or related field preferred.
Certified Information Systems Security Professional (CISSP) preferred. Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar credentials considered.
Functional knowledge of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27000, SIG, CAIQ, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, GDPR, and various federal and state privacy laws.
Ability to broker complex discussions to achieve the proper balance between business needs and cybersecurity best practices.
Ability to influence others through persuasion to arrive at desired outcomes.
Ability to communicate effectively with a broad range of people and roles, including vendors, information technology professionals, and other business personnel.
Ability and desire to seize the initiative, work proactively, and perform assigned duties in a highly independent manner.
Employee Value Proposition (EVP)
GREAT team environment - high performance and expectations along with people who care and support each other.
6 month contract with potential for extension and possible conversion.
Remote while on contract. Converting FTE would require 3 days per week on site.
Work Environment
Location - preferences for the following:
While on contract this would be a remote opportunity but if the desire is to convert FTE, candidates must be living in one of the office locations and go on site 3 days a week as an FTE.
We reserve the right to pay above or below the posted wage based on factors unrelated to sex, race, or any other protected classification.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. This temporary role may be eligible for the following:
This is a Contract position based out of Denver, CO.
Pay and Benefits
The pay range for this position is $60.00 - $70.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: Medical, dental & vision Critical Illness, Accident, and Hospital 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available Life Insurance (Voluntary Life & AD&D for the employee and dependents) Short and long-term disability Health Spending Account (HSA) Transportation benefits Employee Assistance Program Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in Denver,CO.
Application Deadline
This position is anticipated to close on Dec 29, 2025.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
1) 5+ years of information security risk management and/or IT audit experience, preferably in a large corporate enterprise.
2) Functional knowledge of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27000, SIG, CAIQ, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, GDPR, and various federal and state privacy laws.
3) Ideally, some experience in a technical engineering or security role prior to moving into Risk Analyst work.
Description
Our Retail Client recognizes the value that formal cybersecurity risk management processes provide to the company as key enablers of a mature global information security program, and this Global Cyber and Information Security Risk Management team furthers that value by developing the models, policies, and standards used to design, implement, and maintain information technology solutions that meet business needs while incorporating the key principles of information security. The Senior Analyst, Cyber and Information Security Risk Management supports these processes by ensuring that cybersecurity risks associated with complex business operations are within acceptable tolerances. S/he will independently perform cybersecurity risk assessments, provide direction and guidance to stakeholders concerning the handling of security risks associated with assessment findings, and design appropriate risk mitigation strategies.
The Senior Analyst, Cyber and Information Security Risk Management role demands business insight, subject matter expertise, decisiveness, tact, courage, relationship management skills, technical acuity, sound professional judgment, and the ability to effectively communicate with audiences at all levels, both inside and outside of the organization.
How You Will Make a Difference:
1. Collaborate with information technology and other business unit personnel to identify cybersecurity risks associated with highly complex projects and other business initiatives.
2. Perform assessments of external party information security controls to ensure they meet or exceed the company's information security risk management requirements for the services to be provided.
3. Determine information security risk profiles for various vendor and business partner services using questionnaires, relevant industry best practices and standards, and knowledge of company policies.
4. Recommend solutions to eliminate, reduce, or mitigate cybersecurity risk, and communicate said solutions to external parties and/or internal business stakeholders as appropriate.
5. Provide direction and guidance as needed to internal project stakeholders concerning statutory, regulatory, and company policy and program requirements.
6. Record pertinent documentation and communications for all assessments in the organization's online information technology risk management platform.
7. Report status of engagements to Global Cyber and Information Security management, project managers, and other business stakeholders as appropriate.
8. Assist in enforcing information security policies, standards, and procedures. Review requests for exceptions to security policies and provide recommendations to management.
9. Research and advocate new technologies, architectures, and products that will support security requirements for the enterprise and its customers, business partners, and vendors.
10. Provide cybersecurity risk management and process execution guidance to junior team members.
11. Perform other information security risk management tasks as assigned.
Skills
Risk analysis, Risk management, Security, Risk assessment, Nist, Information security, Cyber security
Top Skills Details
Risk analysis,Risk management,Security,Risk assessment,Nist,Information security,Cyber security
Additional Skills & Qualifications
Educational/ Position Requirements:
5+ years of information security risk management and/or IT audit experience, preferably in a large corporate enterprise.
Bachelor's degree in information systems, computer science, or related field preferred.
Certified Information Systems Security Professional (CISSP) preferred. Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC) or similar credentials considered.
Functional knowledge of industry frameworks, regulations, legislation, and audit methodologies, including SOC 1, SOC 2, ISO 27000, SIG, CAIQ, NIST Cybersecurity Framework, Sarbanes-Oxley (SOX), PCI-DSS, GDPR, and various federal and state privacy laws.
Ability to broker complex discussions to achieve the proper balance between business needs and cybersecurity best practices.
Ability to influence others through persuasion to arrive at desired outcomes.
Ability to communicate effectively with a broad range of people and roles, including vendors, information technology professionals, and other business personnel.
Ability and desire to seize the initiative, work proactively, and perform assigned duties in a highly independent manner.
Employee Value Proposition (EVP)
GREAT team environment - high performance and expectations along with people who care and support each other.
6 month contract with potential for extension and possible conversion.
Remote while on contract. Converting FTE would require 3 days per week on site.
Work Environment
Location - preferences for the following:
- Denver, Colorado
- Greensboro, NC
- Costa Mesa, California
- Stratford, NH
While on contract this would be a remote opportunity but if the desire is to convert FTE, candidates must be living in one of the office locations and go on site 3 days a week as an FTE.
We reserve the right to pay above or below the posted wage based on factors unrelated to sex, race, or any other protected classification.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. This temporary role may be eligible for the following:
- Medical, dental & vision
- 401(k)/Roth
- Insurance (Basic/Supplemental Life & AD&D)
- Short and long-term disability
- Health & Dependent Care Spending Accounts (HSA & DCFSA)
- Transportation benefits
- Employee Assistance Program
- Time Off/Leave (PTO, Vacation or Sick Leave)
This is a Contract position based out of Denver, CO.
Pay and Benefits
The pay range for this position is $60.00 - $70.00/hr.
Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. If eligible, the benefits available for this temporary role may include the following: Medical, dental & vision Critical Illness, Accident, and Hospital 401(k) Retirement Plan - Pre-tax and Roth post-tax contributions available Life Insurance (Voluntary Life & AD&D for the employee and dependents) Short and long-term disability Health Spending Account (HSA) Transportation benefits Employee Assistance Program Time Off/Leave (PTO, Vacation or Sick Leave)
Workplace Type
This is a hybrid position in Denver,CO.
Application Deadline
This position is anticipated to close on Dec 29, 2025.
>About TEKsystems:
We're partners in transformation. We help clients activate ideas and solutions to take advantage of a new world of opportunity. We are a team of 80,000 strong, working with over 6,000 clients, including 80% of the Fortune 500, across North America, Europe and Asia. As an industry leader in Full-Stack Technology Services, Talent Services, and real-world application, we work with progressive leaders to drive change. That's the power of true partnership. TEKsystems is an Allegis Group company.
The company is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
About TEKsystems and TEKsystems Global Services
We're a leading provider of business and technology services. We accelerate business transformation for our customers. Our expertise in strategy, design, execution and operations unlocks business value through a range of solutions. We're a team of 80,000 strong, working with over 6,000 customers, including 80% of the Fortune 500 across North America, Europe and Asia, who partner with us for our scale, full-stack capabilities and speed. We're strategic thinkers, hands-on collaborators, helping customers capitalize on change and master the momentum of technology. We're building tomorrow by delivering business outcomes and making positive impacts in our global communities. TEKsystems and TEKsystems Global Services are Allegis Group companies. Learn more at TEKsystems.com.
The company is an equal opportunity employer and will consider all applications without regard to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.