Information Security Risk Analyst

Job Summary — Information Security Risk Analyst Role: Lead risk assessments for IT and business projects; recommend mitigation strategies; support compliance initiatives (e.g., SOX). Collaboration: Work with IT, business stakeholders, and offshore service providers to evaluate and manage risks to information assets and systems. Responsibilities: Conduct risk assessments and cybersecurity compliance reviews. Monitor vulnerabilities and security events; ensure remediation actions are tracked. Develop information security policies, procedures, and awareness training. Experience/Skills Needed: 5+ years IT experience, including 3+ years in Cybersecurity or IT Security (GRC preferred). Strong risk management skills (monitoring, reporting, quantification). Technical knowledge of security architecture, firewalls, IDS, PKI, VPN, encryption, secure coding, and contingency planning. Familiarity with security frameworks (NIST, ISO 27001/27005). Proficient with Microsoft Office. Excellent verbal and written communication skills. Motivation to grow in Cybersecurity. Preferred/Additional: Experience in financial institutions. Knowledge of US regulations (NYCRR 500, GLBA). Experience with Compliance Management Systems, JIRA (admin), and cloud governance. Third Party Risk Management and audit procedures knowledge. Other: LinkedIn profile required. Must provide personal contact number and email for consideration.

#J-18808-Ljbffr