Cybersecurity Risk Analyst

Job Title: Cybersecurity Risk Analyst - 2^nd Line of Defense

Location: Coppell, TX [OR] Tampa, FL ( Choose Any 1 )

Hybrid: 3 days Onsite & 2 days REMOTE

Duration: 6 Months (CONTRACT TO HIRE)

Skills & Experience Needed:

• 5+ years of risk assessment experience in one or more areas: application, infrastructure, vendor risk management
• Financial Services Industry experience a plus.
• Proficiency with Information Risk Management best practices
• Proficiency with information technology in general and cybersecurity technical issues
• Proven technical knowledge of infrastructure, networks, databases and systems and how they affect an organization's cybersecurity risk.
• Proven knowledge of security methodologies, policies, standards and best practices.
• Proven knowledge of information technology systems, infrastructure and operations.
• Ability to explain and articulate technical concepts using both technical and non-technical terms.
• Excellent presentation skills (MS PowerPoint) and ability to manipulate data in a spreadsheet (MS Excel)

Description:

The Information Risk Analyst/Consultant is responsible for creating risk assessment questionnaires, performing risk assessments of applications (on-premises and cloud), infrastructure (on-premises and cloud), as well as vendors assessments against a defined risk framework. These assessments will be conducted through a formalized risk assessment program. The Information Risk Analyst will have the ability to identify risks that are associated how business and technology workforce utilize information technology and in supporting technological systems.

Responsibilities:

• Research technology security issues, cybersecurity best practices, and create risk assessments questionnaires that can be used to assess applications and infrastructure.
• Schedule and perform information risk assessments using our methodology; identify, document and communicate control deficiencies in business processes and technology systems.
• Partner with the Enterprise IT to agree on cybersecurity risk findings identified through the risk assessment (e.g., Databases, Operating Systems, Networking Devices, Storage Systems, Cloud Systems, etc.), new initiatives, and ad hoc processes.
• Provide risk remediation recommendations that the business and technology may implement to mitigate identified control gaps.
• Partner with business and IT to ensure that risks are clearly articulated in a manner that is understood by business and technology audiences.
• Evaluate management responses to ensure that remediation plans and tasks adequately address identified control gaps.
• Create assessment reports and dashboards that will be communicated with various IT owners.
• Document risk issues in the designated risk register
• Assist the business and technology groups through the process for policy exceptions and risk acceptance.
• Participate in and influence information risk assessment process improvement.

Dexian stands at the forefront of Talent + Technology solutions with a presence spanning more than 70 locations worldwide and a team exceeding 10,000 professionals. As one of the largest technology and professional staffing companies and one of the largest minority-owned staffing companies in the United States, Dexian combines over 30 years of industry expertise with cutting-edge technologies to deliver comprehensive global services and support.

Dexian connects the right talent and the right technology with the right organizations to deliver trajectory-changing results that help everyone achieve their ambitions and goals.To learn more, please visit https://dexian.com/.

Dexian is an Equal Opportunity Employer that recruits and hires qualified candidates without regard to race, religion, sex, sexual orientation, gender identity, age, national origin, ancestry, citizenship, disability, or veteran status.