Veterans Sourcing Group, LLC · 5 months ago
Cybersecurity & Risk Analyst
Coppell, TX
Full-time
Hybrid
Senior Level
5+ years expVeterans Sourcing Group, LLC is looking for a Cybersecurity & Technology Risk Management Compliance Analyst to ensure compliance with cybersecurity regulatory requirements and industry standards. The role involves mapping internal policies and controls, monitoring regulatory trends, and providing support for compliance initiatives.
Human ResourcesRecruitingStaffing Agency
Responsibilities
Perform mapping of regulatory requirements to policies, procedures, industry standards, frameworks, and existing controls
Review policies and procedures that demonstrate compliance with regulatory requirements and work to address gaps and inconsistencies
Continue to develop and maintain a comprehensive library of applicable cybersecurity laws and regulations, as well as requirements and resulting controls
Monitor regulatory trends, guidance and new regulations which impact cybersecurity and require enhancements to the existing control framework
Prepare reports on the status of the program to appropriate governance structure(s) and senior management
Support the facilitation of impact assessments to evaluate new or changing regulations and readiness for compliance
Evaluate new initiatives and business ventures to identify and evaluate compliance requirements and readiness
Develop action plans for development and enhancement of cybersecurity controls and provide ongoing support and monitoring of the implementation of those controls
Evaluate policies and procedures to identify and address any compliance gaps or inconsistencies within the control framework and alignment with applicable regulations
Understand cyber and IT best practices including knowledge of frameworks, guidelines, and regulations (i.e., NIST Cybersecurity Framework, FFIEC, NYSDFS)
Ensure cybersecurity and technology risk management meets all industry regulations, standards, and compliance requirements
Qualification
Required
5+ years' experience; prior experience in risk management, legal, compliance or auditing preferred
CISA, CISM, CISSP, CRISC or equivalent certification
Familiarity with ISO/IEC 27001/27002:2013, NIST Cybersecurity Framework, NIST Special Publication (SP) 800-53 or other cyber, technology, financial services guidelines, frameworks and regulations is required
Proficient in PowerPoint, Excel and Word
Expert writing skills to support thorough documentation and communication of information security principles
Intermediate level experience with Microsoft Excel. Has ability to create metrics
Understand the concepts of information technology risk and the different elements required that mitigate risk
Knowledge of basic compliance principles and standards, including industry best practices and compliance controls
Proven knowledge of technical infrastructure, networks, databases and systems and how they affect an organization's cybersecurity and technology risk
Ability to work efficiently and independently with minimal supervision (i.e., self-motivated, proactive, and willing to stretch to meet important deadlines)
Preferred
Bachelor's degree preferred; advanced degree and/or certification a plus
College Degree in Business Management / Computer Science [or related field preferred]
Knowledge of financial services laws and regulations, particularly in the securities markets
Experience working at or with financial services regulators (e.g. SEC, FRB, NYSDFS, CFTC, ESMA, etc.) is highly desirable
Previous audit experience preferred
Company
Veterans Sourcing Group, LLC
Welcome to the Veterans Souring Group company profile. Veterans Sourcing Group (VSG) is a “Service Disabled Veteran Owned Small Business – SDVOSB”.
11-50 employees
Funding
Current Stage
Early StageCompany data provided by crunchbase