Senior Risk Analyst
Apex Systems
Erlanger, KY, United States
Full-time
Apex is seeking a Senior Risk Analyst with a focus on IT systems risk and control for one of our clients, . This role involves assessing IT systems risk, collaborating on risk management programs, aligning technology risk activities, and contributing to risk reduction efforts related to technology use.
Responsibilities :
- Participate in ongoing reviews of IT Risk Management Program.
- Contribute to strategic plans supporting program objectives and alignment of technology risk activities.
- Assist in delivering Risk Management programs to mitigate technology-related risks.
- Contribute to program governance and processes for identifying, assessing, and responding to risks.
- Lead or manage assessments and remediation efforts, tracking progress and reporting on security control gaps.
- Support the Business Technology Disaster Recovery process.
- Support the resolution of Internal Audit, Compliance, Risk Management, Regulatory related issues.
Requirements :
- 5-10 years of experience as a Risk Analyst.
- Experience with Security Controls frameworks (CobiT, ISO 27001, NIST, NIST CSF, PCI DSS, RMF, etc.).
- Knowledge of privacy regulations (GDPR, CPRA, NIS, NIS2, CPA, etc.).
- Experience with a Governance-Risk-Compliance (GRC) software suite, preferably OneTrust.
- Strong understanding of Security Control Frameworks (ISO, NIST, HIPAA, PCI, SOX).
- CISSP, CRISC, CISA, CASP, CYSA, ISA, or Security+ CE Certification.
- Bachelor’s or master’s degree in computer science, Cyber-Security or in a technology / information security-related field is preferred.
Skills :
- Strong leadership, critical thinking, and collaboration skills.
- Attention to detail.
- Ability to influence peers, colleagues, and managers across business and divisional lines.
- Strong technical information security knowledge.
12 days ago