We are looking for a Junior Cybersecurity Analyst Risk & Compliance to support our cybersecurity risk management and compliance initiatives. The ideal candidate will assist in risk assessments, policy development, compliance monitoring, and regulatory adherence. This role provides an excellent opportunity for individuals eager to grow in cybersecurity governance, risk, and compliance (GRC).
Key Responsibilities:
- Assist in conducting cybersecurity risk assessments and document findings.
- Support compliance efforts related to frameworks such as NIST, ISO 27001, CIS, PCI-DSS, SOC 2, HIPAA, and GDPR.
- Monitor and track security controls, ensuring compliance with internal policies and external regulations.
- Help develop and maintain security policies, procedures, and guidelines.
- Assist in third-party/vendor risk assessments and security reviews.
- Work with internal teams to ensure security awareness and adherence to compliance requirements.
- Support internal and external audits by collecting evidence and preparing documentation.
- Stay updated on emerging cybersecurity risks, regulatory changes, and best practices.
- Document security incidents and track remediation efforts for compliance purposes.
Qualifications & Skills:
- Bachelor's degree in Cybersecurity, Information Security, Computer Science, or a related field (or equivalent experience).
- 0-2 years of experience in cybersecurity risk, compliance, or IT security roles.
- Basic understanding of risk management, security controls, and regulatory frameworks (e.g., NIST 800-53, ISO 27001, SOC 2).
- Familiarity with GRC tools, security audits, and risk assessments.
- Strong analytical, problem-solving, and documentation skills.
- Excellent communication skills for engaging with stakeholders and reporting risks.
- Certifications such as CompTIA Security+, CRISC, CISA, or CISSP (Associate) are a plus.
|
Ampcus, Inc
Feb 20, 2025