Security Risk Analyst

Job Number:

21-00514

Location:

Columbia, SC

Onsite Flexibility:

Onsite

Job Description

Qualifications:

  • Ability to obtain a low-level U.S. security clearance, which requires a thorough background screening and U.S. citizenship
  • Bachelor’s degree in computer science, information technology, or related degree OR equivalent work experience
  • 4 years of IT experience, including 2 years of IT security, risk assessment, and/or compliance experience
  • Strong knowledge of NIST security framework and controls
  • Understanding of compliance standards, processes, and procedures
  • Good understanding of functional information security processes
  • Strong knowledge of compliance programs and regulations, including HIPAA, FISMA, PCI, NAIC, MAR, etc.
  • Excellent written and oral command of English language – necessary for performing security assessments/reports to leadership
  • Good presentation skills to present reports to all level of leadership and internal/external customer sites
  • Ability to travel to perform security risk assessments of small business sites
  • Ability to independently conduct formal risk analysis and NIST-based self-assessments to remediate identified risk
  • Understanding of risk management and information system security

Responsibilities:

  • Plan/perform compliance and risk assessment activities for information systems and related processes
  • Analyze and trend compliance data from security scans
  • Ensure regulatory and policy compliance for confidentiality, integrity, and availability of network assets
  • Communicate and escalate compliance and risk issues to the appropriate department and/or level of management
  • Interface with SSOs to gather and document security requirements
  • Provide guidance to functional teams with the interpretation, development, implementation, monitoring, and reporting of control processes, documentation, and compliance routines
  • Conduct procedural and operational review of processes and systems against corporate, government, and internal compliance standards
  • Act as the representative for security incident investigations and risk assessment activities conducted by internal and external areas
  • Evaluate technology and business-related controls for integrating business and information system security and risk mitigation efforts
  • Perform vendor security evaluations
  • Coordinate and validate business risk justification documents for government programs

Location: Columbia, SC
Position is currently remote but will be onsite when office opens fully.

21-00514
Security Risk Analyst

TM Floyd & Company offers a generous array of benefits, depending on the length of assignment. We also offer a referral bonus of up to $1,000. Ask us for more details!

TM Floyd & Company participates in E-VERIFY
AAP, EEO

Share Job Post

Share on facebook
Share on twitter
Share on linkedin

Job Application

  • Drop files here or
    Accepted file types: pdf, doc, docx, pages, Max. file size: 10 MB, Max. files: 2.
    • This field is for validation purposes and should be left unchanged.