Principal Cybersecurity Risk Analyst jobs in United States
info-icon
This job has closed.
company-logo

ICONMA · 1 month ago

Principal Cybersecurity Risk Analyst

positionNewark, NJ
timeFull-time
remoteOnsite
senioritySenior Level, Lead/Staff
money$68.81/hr - $103.76/hr
date7+ years exp

ICONMA is a company focused on providing staffing and consulting services, and they are seeking a Principal Cybersecurity Risk Analyst to lead third-party vendor risk assessments and improve security processes. The role involves collaborating with various teams to identify security threats and promote compliance within the organization.

Staffing & Recruiting
check
H1B Sponsor Likelynote

Responsibilities

Lead third party vendor risk, project risk, or technology risk assessments. Oversee the assessment of the adequacy of a vendor's security program to safeguard Client data. Communicate with business and IT regarding security risks and deficiencies
Lead ongoing security assessments to validate appropriate controls are in place. Review Vendor reports to acknowledge findings from the security assessments and document remediation action plans. Ensure proper evidence is gathered to facilitate timely closure of remediation plans
Provide Information Security consulting and subject matter expertise on third party service contracts and/or Sourcing arrangements and internally to junior analysts
Lead the development and improvement of security processes, assist in metrics development, both within the technology and business organizations. Continuously review and improve the TPRM program, with the intention of improving the efficiency of the workflow as well as the quality of metrics development and reporting
Lead cross-functional teams to serve as the facilitator between the Information Cyber Security Office and the broader organization. Act as a security advisor and ensure an ongoing awareness of identified risks
Collaborate with internal ICSO teams to utilize expertise to identify evolving security threats and provide in-depth understanding of "if, how, and when" they should be addressed. Conduct technical research to aid in threat assessment
Lead the evaluation and assessment of supplier criticality and review changes in scale and scope of services contracted with supplier for material impact
Actively promote commitment to Client’s Information Security, Enterprise Risk Management and Audit initiatives, as well as its culture of compliance

Qualification

Third-Party Risk ManagementRisk ManagementGovernanceRiskCompliance toolsCISSPCISACRISCVulnerability ManagementCloud SecurityIdentity & Access ManagementChange ManagementIDS/IPS technologiesFirewall technologiesNetwork ArchitectureSystem/Access AdministrationKey Management/TokenizationDatabaseApplication securitySecure Software/Code DevelopmentPhysicalEnvironmental SecuritySecurity Event Logging & MonitoringDatabase/Application/Network Layer Secure ProtocolsBusiness ContinuityDisaster Recovery ManagementAutomation/Artificial IntelligenceHIPAA security rulesNIST standardsServiceNow tool

Required

HSD or GED required, Bachelor Degree preferred (or equivalent work experience)
Third party, technology, and project risk assessment experience
Experience with Governance, Risk, and Compliance tools
5 year experience in Risk Management with advanced understanding of Third-Party Risk Management
7 years of experience in an Information Technology Audit/Information Security
Proficient working knowledge within the following risk domains/technologies: Change Management, IDS/IPS technologies, Firewall technologies, Network Architecture, Vulnerability Management, System/Access Administration, Key Management/Tokenization, Database and application security, Secure Software/Code Development, Physical and Environmental Security, Security Event Logging & Monitoring, Database/Application/Network Layer Secure Protocols, Cloud Security, Identity & Access Management, Business Continuity and Disaster Recovery Management, Automation/Artificial Intelligence
CISSP, CISA, CRISC or equivalent
Requires a solid understanding of IT security concepts with an emphasis on Security and Risk Assessment
Requires solid knowledge of IT and computer systems
Requires familiarity with HIPAA security rules and National Institute of Standards and Technology (NIST) standards
Requires familiarity with Vendor Risk Management
Requires strong analytical thinking skills
Requires excellent verbal and written communication skills
Requires excellent interpersonal skills and the ability to work effectively with others as a team
Requires excellent PC skills and demonstrated proficiency with MS Office Suite
Requires the ability to handle multiple tasks and prioritize effectively
Ability to train/mentor incoming team members

Preferred

Suggested familiarity with ServiceNow tool

Benefits

Health Benefits
Referral Program

Company

ICONMA

twitter
Glassdoor3.3
company-logo
ICONMA: Your Partner in Global Staffing Solutions and Digital Transformation ICONMA is a globally recognized, Woman-Owned staff augmentation and technology consulting firm.
dateFounded in 2000
location
Troy, MI, US
people-size1001-5000 employees
web-link
http://www.iconma.com

H1B Sponsorship

ICONMA has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (34)
2024 (31)
2023 (26)
2022 (39)
2021 (37)
2020 (69)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Claudine George
Founder and CEO of ICONMA, LLC
linkedin
Company data provided by crunchbase