Cybersecurity Assessor evaluating enterprise systems for vulnerabilities and compliance. Engaging in assessments and reporting within a hybrid work structure based in Brooklyn Heights, NY.
About the role
- Senior Information Security Governance Analyst managing cybersecurity governance framework at Syneos Health. Collaborating with teams to strengthen organizational security through effective governance and awareness programs.
Responsibilities
- Develop, implement, and maintain a comprehensive cybersecurity governance framework to ensure compliance with industry standards and align with the organization's security and risk management objectives
- Develop, publish, and maintain cybersecurity Policies, Standards, Guidelines, and SOPs that are practical, enforceable, and aligned with leading practices
- Lead multiple cybersecurity governance initiatives concurrently, ensuring alignment with objectives, and timelines and delivering expected outcomes
- Collaborate with cross-functional teams and internal stakeholders to ensure cybersecurity policies, standards, and procedures comply with relevant local and global laws, regulations, and industry standards
- Monitor policy adherence across the organization and address non-compliance issues promptly
- Manage and collaborate to execute cybersecurity awareness campaigns to educate employees about potential threats and promote a culture of cybersecurity in the organization
- Provide guidance and support to business units on cybersecurity governance matters, including security awareness training
- Measure the effectiveness of awareness campaigns and continuously improve engagement through innovative communication strategies
- Coordinate and support internal and external cybersecurity audits and assessments, ensuring compliance with established controls and best practices, and accurate and timely responses to audit findings and recommendations
- Maintain the strategy to support customer audits and update a centralized repository of security documentation, assessments, audit reports, and standard responses to streamline customer engagements
- Develop and deliver accurate, comprehensive responses to customer RFIs, RFQs, and RFPs related to cybersecurity and data protection
- Liaise with internal and external auditors and regulatory bodies to facilitate audits and ensure successful outcomes
- Coordinate audit responses and address findings or recommendations in a timely and effective manner to improve and meet customer satisfaction
Requirements
- Bachelor’s degree in computer science, Information Security, Communication or a related field
- Relevant certifications such as PMP, CRISC, and CISA are desirable
- Minimum 5 years’ experience in cybersecurity governance , with a proven track record of successfully managing complex projects and initiatives
- Knowledge in developing and governing cybersecurity policy frameworks
- Good understanding of cybersecurity principles, practices, and technologies, with previous experience in cybersecurity governance desirable
- Excellent communication and interpersonal skills, with the ability to effectively collaborate with cross-functional teams and communicate complex cybersecurity concepts to non-technical stakeholders
- Strong analytical and problem-solving skills, with the ability to assess risks and develop effective mitigation strategies
- Knowledge of cybersecurity frameworks and standards such as HIPAA, GDPR, NIST, ISO 27001, HITRUST, and FDA regulations
- Ability to work independently as well as collaboratively in a team environment, prioritize tasks, and manage time effectively
Benefits
- Health benefits to include Medical, Dental and Vision
- Company match 401k
- Eligibility to participate in Employee Stock Purchase Plan
- Eligibility to earn commissions/bonus based on company and individual performance
- Flexible paid time off (PTO) and sick time
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Security Business Analyst engaging in requirements gathering, risk assessments, and stakeholder liaison. Supporting measurable security outcomes with comprehensive documentation in a hybrid work setup.
Senior Software Engineer developing engaging gamified learning experiences for cybersecurity awareness. Driving technical leadership and product ownership in a rapidly growing team.
Cyber Security Engineer providing cybersecurity support for SCADA, OT networks and industrial control systems at Vestas. Collaborating with cross - functional teams to ensure secure operations in offshore wind farms.
Senior Consultant in IT Security guiding clients through IT projects and security strategies. Analyzing vulnerabilities and leading project tasks while ensuring quality and timely delivery.
AI Security Engineer securing AI - driven applications at a rapidly expanding tech company. Focus on mitigating risks across the AI lifecycle with a talented team.
Sr. Product Manager leading vision and strategy for Smartsheet's security offerings. Managing enterprise security products while ensuring compliance and driving product adoption.
Senior penetration tester responsible for advanced security testing in various sectors at Combitech. Collaborating with a team of experts, focusing on real threat simulations and enhancing security measures.
Physical Security Specialist managing corporate security operations for a global media company in South Korea. Leading security projects, vendor management, and cross - functional collaboration.
Security Engineer enhancing security capabilities for organizations through automation and collaboration. Building secure services and infrastructure in a dynamic engineering environment.