Senior Cybersecurity Risk Analyst

Perdue - Salisbury, MD

posted about 1 month ago

Full-time - Senior
Salisbury, MD
Merchant Wholesalers, Nondurable Goods

About the position

Perdue Farms is seeking a Senior Cybersecurity Risk Analyst to enhance its information security program. This role involves executing security assessments, guiding secure technology implementations, and mitigating cyber risks. The ideal candidate will possess a strong technical or cybersecurity background and will be responsible for advising on cybersecurity strategies and leading projects to reduce cyber risks associated with IT and business initiatives.

Responsibilities

  • Create and maintain partnering relationships with business leaders and managers to advise on cybersecurity requirements for project implementation and execution.
  • Manage and guide IT and business areas on technical remediations stemming from vulnerability assessments, pen tests, application security assessments, audit, etc.
  • Provide input into cybersecurity strategies and plans based on evolving technology risk and business initiatives stemming from security assessments and industry requirements.
  • Lead cybersecurity projects for identifying and mitigating risk (maturity assessment, cyber controls assessment, PCI-DSS, HIPAA, etc.).
  • Provide and assess the security of third-party solutions and supplier integrations; recommend appropriate security controls and contractual language.
  • Track, measure, validate, and report on risk identification, acceptances, and remediation efforts.
  • Maintain information security policies and standards to support the ongoing protection and security requirements for the organization.
  • Support CSIRT and cybersecurity operations teams during tabletop exercises, incident response, legal requests, and internal investigations.

Requirements

  • Bachelor's degree in Information Systems, Cyber Security, Computer Science or related discipline preferred, or equivalent years of experience.
  • Minimum of seven (7) years of Information Technology experience, with at least three (3) years within Information Security.
  • Previous experience in cybersecurity operations, architecture, or engineering.
  • Experience engaging vendors and consultants to execute cyber assessments.
  • Working knowledge of industry control frameworks and standards, NIST CSF, CIS, OWASP, and MITRE ATT&CK.
  • Proficiency in information security domains, including risk and control assessments, policies and standards, secure systems development lifecycle, regulatory compliance, access controls, incident management, vulnerability management, and data protection.
  • Understanding of cyber security threat modeling, risk management concepts, cyber security frameworks, secure coding principles, and security technologies.

Nice-to-haves

  • CISSP, CISM, CRISC, GSEC, GCIH, Security+ certifications.
  • Prior experience working in manufacturing, retail, medical, energy, finance, food, consumer goods or pharmaceutical industries.
  • Experience with industry regulations such as PCI-DSS, HIPAA, DHS-CFATS.

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service