Jobbörse
Finde Jobs in deiner Nähe – ob vor Ort, hybrid oder remote.- Ähnliche Jobs zu: GRC SECURITY ANALYST
GRC Security Analyst II
Aqua America, Inc.Bryn Mawr
Essential Utilities, Inc. Job Title: GRC Security Analyst II (Governance & Risk) ResponsibilitiesManage execution of both enterprise-wide and focused risk, threat, and vulnerability assessments, inclu
Associate GRC Security Analyst
IXL LearningSan MateoIXL Learning, developer of personalized learning products used by millions of people globally, is seeking an Associate GRC Analyst to join our growing security team. In this role you will support IXL'
Remote GRC Security Analyst with Stock Options
BranchMinneapolisBranch is seeking an experienced Security Governance, Risk, and Compliance professional to manage their Information Security Program and ensure compliance with major regulatory frameworks. This remote
Remote GRC Security Analyst - Risk & Compliance
LaunchDarkly GroupNew YorkLaunchDarkly Group is seeking a Security Analyst III for its Governance, Risk, and Compliance team. This remote role demands deep cybersecurity knowledge and excellent communication skills. You will c
Associate GRC Security Analyst: Risk, Audit & Compliance
IXL LearningSan MateoIXL Learning in San Mateo, CA seeks an Associate GRC Analyst to enhance our cybersecurity governance programs. You'll support audits, perform vendor risk assessments, and maintain audit-ready document
GRC & IT Security Analyst Remote, Flexible Hours
Black Hills Federal Credit UnionRapid CityThe Black Hills Federal Credit Union is seeking an IT Security Analyst II to support its information security governance, risk, and compliance programs. In this role, you will assist with policy devel
GRC Security Analyst II Risk & Vulnerability Lead
Aqua AmericaBryn MawrAqua America, Inc. is hiring a GRC Security Analyst II responsible for managing risk assessments, developing security awareness programs, and ensuring compliance with security standards. The role requ
Information Security Analyst (GRC Focus)
Roman Health Pharmacy LLCBerlinThe Purpose The payments ecosystem is evolving quickly and PPRO is at the heart of this transformation, with trust and security enabling us to move fast, safely. We’re looking for an Information Secur
Senior Cyber Security Analyst GRC Lead
MegaportBrisbaneMegaport is looking for a Senior Cyber Security Analyst to join their Brisbane team, focusing on governance, risk, and compliance. This role involves leading security compliance certification activiti
Senior Information Security Analyst - Governance & GRC
ManpowerGroup Global, Inc.WaterfordManpowerGroup Global, Inc. is seeking an experienced Information Security Analyst to join their cybersecurity team. This role involves supporting enterprise risk management and governance initiatives,
Senior Information Security Analyst, GRC/Responsible AI
SanDiskIrvineJob Description Senior Information Security Analyst, GRC and Responsible AI As a Senior Information Security Analyst (Level 4), you will play a key role in shaping and operationalizing Sandisk’s enter
SOC Security Analyst: SIEM, Threat Hunting & GRC
CisiveHighland BeachCisive in Annapolis, Maryland is seeking a Security Operations & Tooling professional to ensure security integrity and compliance. You will monitor alerts across the SIEM platform, manage the vulnerab
Secrets Management Security Analyst (Security Analyst III)
Elevance HealthUnited StatesSecrets Management Security Analyst(Security Analyst III)Location:This role requires associates to be in-office 1 - 2 days per week, fostering collaboration and connectivity, while providing flexibili
Information Security Analyst (Information Security Analyst II)
SDSU AlumniSan DiegoPosition Summary San Diego State University is seeking a detail‑oriented and collaborative Information Security Analyst to join the Information Technology Security Office (ITSO). In this role, you wil
Information Security Analyst
Clear CapitalRenoAs an Information Security Analyst, your primary responsibility will be to protect our organization's on-premise and cloud infrastructure, along with the data entrusted to our safekeeping. This role d
Information Security Analyst
LinuxconfigRenoAs an Information Security Analyst, your primary responsibility will be to protect our organization’s on‑premise and cloud infrastructure, along with the data entrusted to our safekeeping. This role d
Security Analyst
Vigorcare Pediatric ServicesUnited StatesAbout the job Security AnalystAs a Security Analyst at VigorCare Pediatric Services, you will be responsible for maintaining the security and integrity of our company's data and information systems. Y
Security Analyst
Computer World Services, Corp.MorrisvilleJob DescriptionComputer World Services Corp (CWS) is seeking an experienced Security Analyst/Data Security Specialist to support the planning, coordination, and implementation of the organization’s in
Security Analyst
TryApplyNowSanta ClaraJob Description Bolster Legal Services is hiring a mid-level Security Analyst to protect global brands from phishing, impersonation, and online fraud campaigns targeting their customers and employees.
Security Analyst
ASM Research, An Accenture Federal Services CompanyDenverCreates cyber-intelligence tools / methods and performs research and analysis in order to mitigate and eliminate high level data and cyber security risks. Designs, tests and implements state-of-the-ar
Security Analyst
Integration International IncWashingtonEnterprise credentialing / Smart ID systemsIAM integration and identity standards (NIST 800-63, FIPS 201, PKI)RFID, NFC, smart cardsZero Trust architecture and modern authentication (FIDO2, passwordle
Information Security Analyst (Information Security Analyst II)
San Diego State UniversitySan DiegoInformation Security Analyst (Information Security Analyst II) Job No: 557129Work Type: StaffLocations: Southern California: San DiegoCategories: Bargaining Unit: Unit 9 - CSUEU - Technical Support Se
Senior Industrial Security Analyst - National Security
Huntington Ingalls IndustriesSan DiegoHuntington Ingalls Industries in San Diego is seeking a Senior Industrial Security Analyst to provide advanced security expertise across various disciplines. In this role, you will ensure compliance w
Digital Security GRC Platform Owner
bpDenverEntity: Production & OperationsJob Family Group: IT&S GroupJob Description: Organization:bpx Energy –Technology/Enterprise Architecture/Digital Security Role SummaryThe GRC Platform Owneris responsibl
Security Analyst
Vigorcare Pediatric ServicesHoustonWe are seeking a highly motivated and experienced Security Analyst to join our team. The Security Analyst will be responsible for ensuring the security and confidentiality of sensitive information and
GRC Security Analyst II
- Bryn Mawr, Pennsylvania, United States
- Bryn Mawr, Pennsylvania, United States
Über
Manage execution of both enterprise-wide and focused risk, threat, and vulnerability assessments, including but not limited to Security Awareness, Vulnerability, Configuration, and Third-Party Assessments. Analyze and prioritize risk, vulnerability, and compliance findings to define remediation priorities considering all available data sources; partnering with technology and business stakeholders to socialize and implement remediation plans. Define and manage qualitative and quantitative metrics and reporting to measure the success of vulnerability, third party, security awareness, security awareness, configuration, and asset management remediations. Ability to lead ongoing vulnerability management processes, including working with IT and business stakeholders to prepare vulnerability remediation plans, track progress, and reduce overall vulnerability exposures. Participate in development, implementation and operation of control/compliance frameworks and security best practices based on ISO 27001/27002, NIST (800‑30, Cyber Security Framework/CSF), COBIT, Critical Security Controls, CIS Configuration Benchmarks. Monitor compliance with security configuration standards for servers, endpoints, software, and networking platforms based on CIS Benchmarks. Work closely with IT, development, and operations teams to ensure the integration of security practices into the software development lifecycle (SDLC) and IT operations. Lead or assist with vendor and 3rd party risk assessments. Create/maintain documentation of security solutions, services, configurations, and processes. Work closely with engineers focused on intrusion detection, incident response and security operations to manage risk related to existing and emerging threats. Collaborate with other security engineers to analyze, process, integrate, communicate, and respond to threat intelligence. Ability to participate in or lead development, improvements and updates to continually improve security controls, policies, guidelines, processes and procedures. Develop and deliver security awareness training programs for employees to enhance their understanding of security best practice to ensure that security and risk management continue to be integrated into the corporate culture. Lead development and operation of the security awareness program to ensure that security and risk management continue to be integrated into the corporate culture. Implement and maintain controls for compliance and privacy. Act as liaison to internal and external audit teams as needed. Provide escalation support for the Information Technology Help Desk as required. Ability to work off hours maintenance windows and participate in rotating on call shift periodically. Ability to work alone or function effectively as part of a team. All other duties as assigned by management. Qualifications
Bachelors in Information Technology, Computer Science, Cyber Security, Security and Risk Analysis, Information Assurance. 3‑5 years of previous Governance & Risk experience. Candidates must have a minimum of one of the following certifications or will be required to obtain within the first 12 months: CISSP, GIAC (GSEC, GSNA), CRISC, CISA, CISM, CCSP, SSCP, CAP, CSSLP, CSX Practitioner. Experience working with assessment tools such as Qualys Policy Compliance and CIS‑CAT. Experience developing and using Qualys, or other vulnerability management, platforms with experience in multiple modules and/or areas: Vulnerability Management, Policy Compliance, Continuous Monitoring, Policy Compliance, Web Application Scanning and Asset Management. Experience leading security awareness program development including: Leading regular phishing assessment campaigns. Creating innovative security awareness campaigns using solution provider and custom‑developed tools/trainings designed to be flexible and adaptable across a diverse employee population (executives, engineering, marketing and communications, finance, customer service, etc.). Participate in aligning the security awareness program with the enterprise’s greatest risks and measure the impact in risk reduction from security awareness efforts. GRC platform experience, with RSA Archer knowledge a strong positive. Strong written and verbal communication skills are required as this position will be responsible for working directly with technical teams and business stakeholders. Demonstrates strong organizational skills and the ability to multi‑task, prioritize workload and delegate responsibilities. Strong analytical skills for assessing and prioritizing security risks. Ability to promote a security‑conscious culture within the organization. Ability to adapt to evolving threats, technologies, and organizational needs. Ability to understand and integrate security into project and application lifecycles for enterprise IT systems. Minimum of 3 to 5 years experience in Information Technology focusing on information security auditing, risk analysis, and vulnerability management. General knowledge of the following technologies from a security perspective: Active Directory, database platforms, web server platforms, Middleware, PKI, cloud computing, Office 365 and Azure. Experience using statistical, quantitative, and qualitative analysis techniques. Proactive approach to staying informed on the latest security threats, vulnerabilities, and industry best practices. Essential Utilities, Inc., is an Equal Opportunity/Affirmative Action employer. Equal employment opportunity is provided to all employees and applicants for employment without regard to the following legally protected characteristics: race, color, religion, sex, national origin, age, pregnancy (including childbirth and related medical conditions, including medical conditions related to lactation), physical or mental disability, covered‑veteran status, genetic information (including testing and characteristics), sexual orientation, gender identity or expression or any other characteristic protected by applicable local, state or federal law. Essential Utilities is committed to providing reasonable accommodation to individuals with disabilities. If you have a condition that may prevent you from applying for a job online or need to request an accommodation during the interview process, please call (1-877-271-9012).
#J-18808-Ljbffr
Sprachkenntnisse
- English
Dieses Stellenangebot stammt von einer Partnerplattform von TieTalent. Klick auf „Jetzt Bewerben”, um deine Bewerbung direkt auf deren Website einzureichen.