Security Risk Analyst

Job Number:

21-00709

Location:

Columbia, SC

Onsite Flexibility:

Onsite

Job Description

Qualifications:

  • Ability to obtain a low-level U.S. security clearance, which requires a thorough background screening and U.S. citizenship
  • Bachelor’s degree or associate degree (plus 2 years of job-related experience) in computer science, information technology, or job-related degree OR equivalent work experience
  • 6 years of IT experience, including 4 years of IT security, risk assessment, and/or compliance experience
  • Experience with:
    • NIST, FISMA, COBIT, SSAE 16, PCI, SOX, HIPAA, or other regulatory requirements
    • Security management plans
    • Vulnerability matrices
    • Scanning and remediation of information security (IS) assets using automated tools (i.e., Nessus, AppDetective, Vanguard, etc.)
  • Good understanding of compliance standards, processes, and procedures
  • Experience with Word, Excel, and Access and ability to use Excel and Access for spreadsheet analysis
  • Good understanding of functional IS processes

Responsibilities:

  • Define, document, and implement information security (IS) standards and policies across the enterprise
  • Work with external auditors to provide support as needed
  • Review customer contracts, RFPs, and requirements for appropriateness
  • Establish and maintain an overall IS program
  • Ensure industry advisories, alerts, or other requirements are acted upon in an appropriate and timely manner
  • Assess IS on a periodic basis
  • Provide information security related guidance
  • Work with line of business security officers to coordinate efforts
  • Maintain a repository of IS data and compliance guidance
  • Provide corporate security council coordination and support
  • Conduct procedural and operational review of IS processes and system controls against corporate and internal compliance standards
  • Provide guidance to functional teams with the implementation, monitoring, and reporting of control processes, documentation, and compliance measures
  • Evaluate technology and business-related controls for integrating business and IS security and risk mitigation efforts
  • Develop and implement tools to support automated risk assessment and compliance efforts

Location: Columbia, SC
Position is currently remote but will be onsite when office opens fully.
21-00709
Security Risk Analyst

TM Floyd & Company offers a generous array of benefits, depending on the length of assignment. We also offer a referral bonus of up to $1,000. Ask us for more details!

TM Floyd & Company participates in E-VERIFY
AAP, EEO

Share Job Post

Share on facebook
Share on twitter
Share on linkedin

Job Application

  • Drop files here or
    Accepted file types: pdf, doc, docx, pages, Max. file size: 10 MB, Max. files: 2.
    • This field is for validation purposes and should be left unchanged.