Information Security Analyst at Hitss conducting penetration tests and security assessments across IT infrastructures. Collaborating with teams to report and mitigate vulnerabilities.
About the role
- Cyber Risk Analyst assessing third-party vendor cybersecurity risks for S&P Global. Collaborating with teams to evaluate vendors' security postures and enhance risk management processes.
Responsibilities
- Conduct thorough Cybersecurity, Business Continuity, Artificial Intelligence for Cloud Service Prover, Non-Cloud Service Providers Vendors, evaluating their information security posture.
- Effectively collaborate with internal teams to identify critical vendors and assess their potential impact on the organization's cyber risk profile.
- Communicate risk assessment findings and recommendations to key stakeholders, including senior management, legal, and compliance teams.
- Work closely with vendors to address identified security gaps and ensure they meet the organization's cybersecurity requirements.
- Review the vendors on the continuous monitoring program and assisting in driving the periodically review the vendors.
- Monitor and stay abreast of evolving cybersecurity threats and industry trends to enhance the effectiveness of the risk assessment process.
- Support enhancement projects within Vendor Risk Management to meet various business and regulatory requirements.
- Assist the team members in balancing the load and managing Ad-hoc projects.
Requirements
- Bachelor’s degree in computer science or engineering or equivalent
- Minimum 3-5 years of experience in Information Security or Technology Risk Management
- Any prior exposure to vendor risk management and/ or privacy laws and regulations is a plus.
- Demonstrable understanding of the concepts of technology controls and information security controls.
- Exposure to cloud technologies and cloud security is highly desired; the familiarity with public cloud technologies such as Amazon Web Services (AWS) or Microsoft Azure or Google Cloud is highly preferred.
- Exposure to Cyber contract reviews is an advantage
- Excellent communication skills - a must. The resource should have the ability to communicate with cross-functional teams and vendors, both written and oral communication is critical.
Benefits
- Health & Wellness: Health care coverage designed for the mind and body.
- Flexible Downtime: Generous time off helps keep you energized for your time on.
- Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills.
- Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs.
- Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families.
- Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity Analyst safeguarding digital environment for Vibrant Ingredients. Monitoring security threats while supporting enterprise security program.
Information Security Analyst managing risk and compliance controls at USAA. Collaborating with key stakeholders to enhance information security and regulatory compliance processes.
Security Analyst managing security and compliance programs for fintech startup. Ensuring policies and evidence stay organized and collaborate with Head of Security for execution.
IT Security Analyst overseeing internal audits, security assessments, and compliance for CMC’s IT operations. Engaging in risk management and policy development while collaborating with cross - functional teams.
Specialist in PingFederate, PingDirectory and PingID for IAM infrastructure management. Collaborating with teams for stable operation and development in Cotia.
Cyber Security Analyst in the Core IP/DDoS Security team at Vodafone. Ensuring real - time threat mitigation and incident response for DDoS attacks.
Senior Security Analyst developing and implementing security strategies for logistics operations. Focus on risk assessment, staff training, and policy compliance.
Security Analyst managing vulnerability management for PostFinance. Overseeing patching and security issues to ensure system stability.
IT Security Analyst supporting the Supreme Court of Nevada in safeguarding judicial information systems. Implementing security controls, maintaining compliance, and conducting security assessments in a collaborative environment.