| Human Risk Analyst at Remote, Remote, USA |
| Email: [email protected] |
| From: malini, smacforce consulting [email protected] Reply to: [email protected] Human Risk Analyst We are seeking a Human Risk Analyst to identify, assess, and mitigate risks associated with staff and customer behavior. This role focuses on developing and implementing strategies to enhance security awareness, ensure policy compliance, and reduce human-related risks, such as phishing attempts. The Human Risk Analyst will work closely with various departments to foster a culture of security and compliance. Technical Skills: Security Awareness and Training: Expertise in designing, implementing, and evaluating security awareness programs. Familiarity with tools and platforms for delivering security training, such as KnowBe4. Social Engineering: Understanding of social engineering techniques and attack vectors, including phishing, pretexting, and baiting. Ability to design and conduct social engineering assessments and simulations. Risk Assessment: Knowledge of risk assessment methodologies and frameworks, including NIST and SOC 2. Experience in conducting risk assessments focused on human factors and behavior. Behavioral Analytics: Understanding of behavioral analytics and the ability to analyze user behavior to identify anomalies. Familiarity with tools and techniques for monitoring and analyzing user activity. Experience and Technical Skills: Experience in IT Security: Five years of experience in IT security, with a focus on designing and implementing security architectures for cloud environments. Proficiency with AWS Cloud Platform and deep understanding of cloud security best practices and technologies. Hands-on experience with security technologies, including firewalls, VPNs, IDS/IPS, WAFs, SIEM, and endpoint security solutions. Experience with encryption tools and services, including Amazon Cognito, AWS Security Hub, Amazon GuardDuty, and Amazon Inspector. Compliance and Standards: Familiarity with industry standards and regulations such as NIST, HIPAA, and SOC 2. Experience in conducting security assessments and audits to ensure compliance with these standards. Datasage Technologies US Office: 945 North Point Drive #1329, Alpharetta, GA - 30022. Tel.: 678 400 9153 datasagetech.com Technical Skills in Cloud Security: Deployment and ongoing maintenance of AWS cloud security controls. Identifying, deploying, and maintaining necessary cloud security controls to ensure secure operation and maintenance of AWS environments. Experience with source-to-image container-based deployment models, image-stream container management, and automated CI pipeline management. Management of automated security scans, support for gitops operational models, and deployment to multiple container-based cluster orchestration frameworks. Experience with infrastructure-as-code (IaC), managing container network level isolation, and supporting zero downtime scaling and upgrades. Expertise in disaster recovery in different cloud regions, automated continuous deployment (CD), and mutual TLS across container communications. Experience and Non-Technical Skills: Experience: Three years of experience in cybersecurity, risk management, or related fields. Hands-on experience managing human-related security risks and developing security awareness programs. Proven experience leading or participating in projects focused on reducing human-related risks. Communication and Training: Excellent written and verbal communication skills. Demonstrated ability to create and deliver engaging training materials and presentations. Strong interpersonal skills to effectively communicate with employees at all levels. Behavioral Understanding: Understanding of psychological principles related to human behavior and decision-making. Knowledge of techniques to influence and change behavior. Compliance and Privacy: Knowledge of data privacy regulations and compliance requirements. Experience ensuring compliance with legal and regulatory requirements related to human risk. Implementation Record: Demonstrated record of successfully implementing security awareness and training initiatives. Responsibilities: Security Awareness Programs: Design, implement, and evaluate security awareness programs to enhance overall security posture. Datasage Technologies US Office: 945 North Point Drive #1329, Alpharetta, GA - 30022. Tel.: 678 400 9153 datasagetech.com Utilize tools and platforms to deliver effective training and ensure employee engagement. Social Engineering Assessments: Conduct social engineering assessments and simulations to identify vulnerabilities and improve resilience. Analyze results to develop targeted strategies for mitigating human-related risks. Risk Assessment and Management: Perform risk assessments focusing on human factors and behavior, using established methodologies and frameworks. Develop and implement strategies to address identified risks and improve security practices. Behavioral Analytics and Monitoring: Analyze user behavior to identify anomalies and potential security threats. Employ tools and techniques for effective monitoring and analysis of user activity. Training and Communication: Create and deliver engaging training materials and presentations on security awareness and risk management. Communicate effectively with employees at all levels to promote a culture of security and compliance. Compliance and Regulatory Adherence: Ensure compliance with data privacy regulations and other legal requirements related to human risk. Maintain a record of successful implementation of security awareness and training initiatives. Malini [email protected] Keywords: continuous integration continuous deployment information technology Georgia Human Risk Analyst [email protected] |
| [email protected] View all |
| Wed Sep 18 21:10:00 UTC 2024 |