| Information Security Analyst at Dallas, Texas, USA |
| Email: [email protected] |
| From: Sonali, KPG99 [email protected] Reply to: [email protected] Job Title: Information Security Analyst Visa: GC, USC only Duration: 1 year contract Location: Dallas, TX or Tampa, FL (Hybrid 3 days onsite in a week) Senior Information Risk Analyst - Information Security The Senior Information Risk Analyst is responsible for performing risk assessments of applications, infrastructure, business and technology vendors against a defined risk framework, when needed as part of Risk Treatment. These assessments will be conducted either through a formalized risk assessment program or through other risk reporting activities (e.g., policy exceptions, risk acceptance). The Senior Information Risk Analyst will have the ability to identify risks in the way that a business and technology utilize information and the supporting technological systems. Principal Responsibilities: Participate in and influence information risk assessment process improvement Schedule and perform information risk assessments using DTCC methodology; identify, document and communicate control deficiencies in business processes and technology systems Partner with the business and technology to agree cybersecurity risk findings identified through the risk assessment (e.g., vendor, application, infrastructure), new initiatives, and ad-hoc processes Provide risk remediation recommendations that business and technology may implement to mitigate identified control gaps Partner with business and IT to ensure risks are clearly articulated in a manner that is understood by business and technology audiences Evaluate management responses to ensure remediation plans and tasks adequately address identified control gaps Document risk issues in the DTCC designated risk register Assist the business and technology groups through the DTCC process for policy exceptions and risk acceptance, and work internally with the Risk Treatment team to address risks and issues efficiently. Experience: 5 - 7 years of risk assessment experience in one or more areas: application, infrastructure, vendor risk management Financial Services Industry experience a plus but not required Proficiency with Information Risk Management best practices, standards, and frameworks Knowledge and Skills Required: Proven knowledge of technical infrastructure, network, database, systems & how they affect orgs cybersecurity risk Proven knowledge of security methodologies, policies, standards and best practices Proven knowledge of information technology systems, infrastructure and operations Ability to explain and articulate technical concepts using both technical and non-technical language Excellent presentation skills (MS PowerPoint). Ability to manipulate data in a spreadsheet (MS Excel) Education, Training and Certification: Bachelors degree preferred CISSP/CISM/CRISC certification preferred Thanks & Regards Sonali Kumari Technical Recruiter KPG99, INC Keywords: active directory information technology green card microsoft Florida Texas |
| [email protected] View all |
| Tue Sep 12 03:53:00 UTC 2023 |