Information Technology - Analyst, Cyber Security

TalTeam - Baltimore, MD

posted 7 days ago

Full-time - Mid Level
Baltimore, MD
Professional, Scientific, and Technical Services

About the position

The Cyber Security Analyst role is focused on protecting the organization's data from unauthorized access, disclosure, and damage. The position involves advocating for and executing cybersecurity processes while supporting business and customer needs. The analyst will work under the supervision of the Manager of Cybersecurity Risk and Compliance, collaborating with various teams to assess and manage cybersecurity risks effectively.

Responsibilities

  • Support the Cybersecurity Risk Management program and guide a team of cybersecurity specialists.
  • Partner with TPRM, Procurement, Legal, and key business stakeholders for continuous monitoring efforts.
  • Assess cybersecurity controls, identify gaps, and develop mitigation strategies.
  • Collaborate with internal and external teams to manage risks effectively.
  • Conduct thorough assessments with business teams to identify potential risks, including evaluating security practices and regulatory compliance.
  • Represent Cybersecurity in risk management and implement cybersecurity controls to maintain data confidentiality, integrity, and availability.
  • Prepare detailed risk assessment reports and maintain a comprehensive repository of risk assessments.
  • Conduct risk analyses to ensure consistency in the risk assessment lifecycle.
  • Design and implement security solutions to address enterprise risks.
  • Develop and maintain Information Security Risk Metrics supported by KPIs and KRIs.
  • Test and report on new technologies to address security concerns and collaborate with the vulnerability management team.
  • Support compliance efforts with NIST, FedRAMP, and HIPAA, including external assessment readiness and risk assessments.

Requirements

  • College Degree in Information Security or Technology related field or equivalent experience.
  • 3+ years of related work experience in information security.
  • High level of expertise in information security concepts and policies.
  • In-depth understanding of networking, operating systems, security technologies, and authentication technologies.
  • Knowledge of vulnerability assessments, incident response, and security policy creation.
  • Ability to learn Information Security tools in a complex multi-platform environment.

Nice-to-haves

  • Significant understanding of NIST Risk Management Framework and Information Security Risk Management methodologies.
  • Experience with Cybersecurity Governance, Risk, and Compliance (eGRC) Programs and Platforms.
  • Ability to translate technical requirements to business needs.
  • Proficiency with security controls for cloud environments (Azure and AWS).
  • Familiarity with security tools such as vulnerability assessment applications and Data Loss Prevention.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service