This job has closed.

Veterans Sourcing Group, LLC · 5 months ago

Cybersecurity & Risk Analyst

Coppell, TX

Full-time

Hybrid

Senior Level

5+ years exp

Veterans Sourcing Group, LLC is seeking a Cybersecurity & Technology Risk Management Compliance Analyst to ensure compliance with cybersecurity regulatory requirements and industry standards. The role involves developing policies, monitoring controls, and providing transparency into cybersecurity laws and regulations.

Human ResourcesRecruitingStaffing Agency

Work & Life Balance

Responsibilities

Perform mapping of regulatory requirements to policies, procedures, industry standards, frameworks, and existing controls

Review policies and procedures that demonstrate compliance with regulatory requirements and work to address gaps and inconsistencies

Continue to develop and maintain a comprehensive library of applicable cybersecurity laws and regulations, as well as requirements and resulting controls

Monitor regulatory trends, guidance and new regulations which impact cybersecurity and require enhancements to the existing control framework

Prepare reports on the status of the program to appropriate governance structure(s) and senior management

Support the facilitation of impact assessments to evaluate new or changing regulations and readiness for compliance

Evaluate new initiatives and business ventures to identify and evaluate compliance requirements and readiness

Develop action plans for development and enhancement of cybersecurity controls and provide ongoing support and monitoring of the implementation of those controls

Evaluate policies and procedures to identify and address any compliance gaps or inconsistencies within the control framework and alignment with applicable regulations

Understand cyber and IT best practices including knowledge of frameworks, guidelines, and regulations (i.e., NIST Cybersecurity Framework, FFIEC, NYSDFS)

Ensure cybersecurity and technology risk management meets all industry regulations, standards, and compliance requirements

Qualification

Cybersecurity complianceRisk managementCISA certificationNIST Cybersecurity FrameworkFinancial services regulationsTechnical infrastructure knowledgeMicrosoft ExcelExpert writing skillsSelf-motivated

Required

5+ years' experience

CISA, CISM, CISSP, CRISC or equivalent certification

Proficient in PowerPoint, Excel and Word

Knowledge of financial services laws and regulations, particularly in the securities markets

Familiarity with ISO/IEC 27001/27002:2013, NIST Cybersecurity Framework, NIST Special Publication (SP) 800-53 or other cyber, technology, financial services guidelines, frameworks and regulations

Expert writing skills to support thorough documentation and communication of information security principles

Intermediate level experience with Microsoft Excel. Has ability to create metrics

Understand the concepts of information technology risk and the different elements required that mitigate risk

Knowledge of basic compliance principles and standards, including industry best practices and compliance controls

Proven knowledge of technical infrastructure, networks, databases and systems and how they affect an organization's cybersecurity and technology risk

Ability to work efficiently and independently with minimal supervision (i.e., self-motivated, proactive, and willing to stretch to meet important deadlines)