SENIOR INFORMATION RISK ANALYST (Contract to Hire role)

SENIOR INFORMATION RISK ANALYST (Contract to Hire role)

Tampa, FL
10219316
12-04-2017
or
Intermedia Group has the following open position with one of our clients:
 
JOB TITLE: SENIOR INFORMATION RISK ANALYST
LOCATION: Jersey City, NJ | Tampa, FL |  Dallas, TX
TYPE: Contract to Hire role
CLIENT: Fortune 100 Bank
 

NOTE: Looking for a candidate with 10 - 15 years of risk assessment experience in one or more areas: application, infrastructure, vendor risk management

POSITION SUMMARY:
  • The Senior Information Risk Analyst is responsible for performing risk assessments of applications, infrastructure, business and technology vendors against a defined risk framework.
  • These assessments will be conducted either through a formalized risk assessment program or through other risk reporting activities (e.g., policy exceptions, risk acceptance).
  • The Senior Information Risk Analyst is responsible for driving the strategic risk assessment program across the organization and provide advice and guidance to Business Managers, Business Information Security Officers (BISOs), and Information Risk Analysts.
  • S/he will assist and support the Head Of Risk Assessment with the development of strategic program elements. 
 
DEPARTMENT/AREA FUNCTION: 
The TRM Risk Analysis and Reporting organization provides the following primary services: 
  • Risk Assessments - The review of business and technology applications and their supporting infrastructure, vendors, and business ventures against a set of control standards to identify potential control gaps that may lead to a cybersecurity risk exposure. 
  • Metrics and Reporting - The development of Key Risk and Performance Indicators (KRI/KPIs) that identify material risks to the firm’s operational environment. The communication of key risks to the Governance committees, business and shared services, and regulators. 
     
PRINCIPAL RESPONSIBILITIES: 
  • Participate in and drive strategic information risk assessment process improvement 
  • Develop infrastructure and IT Process assessments for use across the computing environment 
  • Develop and manage the Information Security delivery of the Vendor Risk Assessment program 
  • Schedule and perform information risk assessments using the firm’s methodology; identify, document and communicate control deficiencies in business processes and technology systems 
  • Assist Information Security Analysts with complex risk decisions and provide advice and guidance where required 
  • Work with the business and technology to agree cybersecurity risk findings identified through the risk assessment (e.g., vendor, application, infrastructure), new initiatives, and ad hoc processes 
  • Provide risk remediation recommendations that the business and technology may implement to mitigate identified control gaps 
  • Partner with business and IT to ensure that risks are clearly articulated in a manner that is understood by business and technology audiences 
  • Evaluate management responses to ensure that remediation plans and tasks adequately address identified control gaps 
  • Perform peer reviews of assessments performed by Information Risk Analysts 
  • Document risk issues in the designated risk register 
  • Assist the business and technology groups through the client's process for policy exceptions and risk acceptance 

     
EXPERIENCE: 
  • 10 - 15 years of risk assessment experience in one or more areas: application, infrastructure, vendor risk management 
  • Financial Services Industry experience a plus but not required 
  • Proficiency with Information Risk Management best practices 
     
KNOWLEDGE AND SKILLS REQUIRED: 
  • Proven knowledge of technical infrastructure, networks, databases and systems and how they affect an organization’s cybersecurity risk 
  • Proven knowledge of security methodologies, policies, standards and best practices 
  • Proven knowledge of information technology systems, infrastructure and operations 
  • Ability to explain and articulate technical concepts using both technical and non-technical language 
  • Critical thinking and analytical skills 
  • Excellent presentation skills (MS PowerPoint) 
  • Ability to manipulate data in a spreadsheet (MS Excel) 
  • Ability to work collaboratively by building consensus and influencing decision making to foster forward progress with projects and initiatives 
  • Strong oral and written communication skills 
  • Excellent organizational skills, coupled with ability to be versatile and flexible 
  • Sound business judgment and the ability to work successfully with all levels of management 
  • Excellent grammar and style skills; ability to adapt writing style for different audiences and media 
     
EDUCATION, TRAINING AND CERTIFICATION: 
  • Bachelor’s degree preferred 
  • CISSP/CISM/CRISC certification preferred
 
If you are interested in pursuing this opportunity, please respond back and include the following
  • Full MS WORD Resume
  • Current and required compensation
  • Current contact information
  • Availability
Upon receipt, one of our managers will contact you to discuss in full
 
Jason Denmark
Managing Director

INTERMEDIA GROUP, INC.
180 Varick Street
New York, NY 10014
Voice: 212-248-0100

Email: jdenmark@intermediagroup.com
Corporate Web Site: www.intermediagroup.com
OPEN JOB LIST: http://intermediagroup.com/jobs
 

 

Recruiter Contact

Jason Denmark
INTERMEDIA GROUP, INC.
131 Varick Street
New York, NY 10013
Voice: 212-248-0100
this job portal is powered by CATS