Cybersecurity Analyst at The Media Trust analyzing malicious files and improving malware prevention. Collaborating with Digital Security and Operations team while working with diverse technology.
About the role
- Cyber Risk Analyst at Semperis safeguarding organizational assets through risk analysis and mitigation. Collaborating with vendors and cross-functional teams to assess and control Cyber Risks.
Responsibilities
- Safeguarding the organization's assets and ensuring operational resilience by identifying and assessing potential Cyber Risks of all incoming vendors, third parties, services, and technology
- Collaborate with cross-functional teams and third-party vendors to request, collect, and analyze pertinent information and collateral
- Conduct technology risk assessments across new and existing applications
- Ensure comprehensive documentation is maintained for all approved and denied exceptions
- Collect, process, and interpret multiple sources of data to model Cyber Risk scenarios and translate findings into measurable business risk statements
- Track risk plan milestones and drive issue management
- Develop mitigation strategies, recommend strategies to reduce, transfer, or avoid Cyber Risks
- Perform security assessments of new and existing third-party vendors and service providers
- Utilize and manage the corporate GRC platform and risk management tools to streamline risk workflows
- Respond to customer, partner, or compliance questionnaires related to product security
- Gather evidence and documentation required for internal and external security audits
Requirements
- 5+ years of relevant experience in Information Security, IT Risk Management, IT Audit, or GRC, with a heavy focus on technology risk
- Deep working knowledge of key GRC concepts, risk assessment methodologies, and industry frameworks (e.g., NIST SP 800-53/CSF, ISO 27001)
- Proven, hands-on experience using and configuring modern GRC platforms for risk management, policy management, and compliance automation. Experience in configuring and using tools such as Archer, ServiceNow, MetricStream or Vanta preferred
- Experience with IT and Security tools, SaaS / other Cloud technologies and/or software development
- Certifications: CRISC, CISM, CISA, or similar recognized security and risk management certifications
- Bachelor’s degree in computer science, Information Security, or a related field
- Must be a US Citizen.
Benefits
- Semperis has been recognized as one of America’s Fastest-Growing Cybersecurity Companies
- a DUNS 100 Top Startup to Work For
- multi-year Inc. Best Workplace awardee
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Industrial Security Analyst ensuring compliance with federal security regulations and administering security programs for classified materials. Collaborating with internal and external stakeholders in a high - profile setting.
Staff Cybersecurity Analyst responsible for safeguarding cloud assets and leading security assessments for Southern Glazer’s. Collaborating with teams to develop cloud security policies and addressing cybersecurity incidents.
Senior Threat Intelligence Analyst working with Bupa's cybersecurity team. Focused on threat management and defensive strategies to enhance cyber security posture.
Senior Information Security Analyst at Field Nation leading SOC 2 and ISO 27001 compliance programs. Collaborating with teams to embed security and leverage AI in GRC workflows.
Analista de Ciberseguridad en CRG Solutions responsable de monitorear amenazas y gestionar vulnerabilidades en la organización. Identificación de riesgos y mejora continua de la postura de seguridad.
Compliance & Information Security Analyst at beqom managing GRC and TPRM functions. Overseeing client governance, risk, and compliance requests, and vendor due diligence at a SaaS company.
Security Compliance Analyst responsible for ensuring compliance with security regulations and collaborating on security measures across teams.
Senior Technical Expert in Cyber Defense Center at ZEISS analyzing global cyber threats. Collaborating with SOC, CIRT, and ensuring proactive defense strategies.
Information Security Analyst focusing on vulnerability research and data analysis at Flexera. Involves analyzing, verifying vulnerabilities, and maintaining high - quality content standards.