Job Specifications
VARITE is looking for a qualified Information Security Risk Analyst for one of its clients.
WHAT THE CLIENT DOES?
A U.S. based regional bank and financial services company that provides a wide range of banking products and services, including personal banking, business banking, mortgages, wealth management, and investment services.
WHAT WE DO?
Established in the Year 2000, VARITE is an award-winning minority business enterprise providing global consulting & staffing services to Fortune 1000 companies and government agencies. With 850+ global consultants, VARITE is committed to delivering excellence to its customers by leveraging its global experience and expertise in providing comprehensive scientific, engineering, technical, and non-technical staff augmentation and talent acquisition services.
HERE'S WHAT YOU’LL DO:
Job Title: Information Security Risk Analyst
Location: San Francisco, CA Los Angeles, CA & Salt Lake, UT
Duration: 12 Months
Work Mode: Onsite role
Job Description:
Hiring Manager Notes:
• San Francisco, Los Angeles, Salt Lake City (Fully onsite - 5 days/week)
• Must be US Citizen
• Peraton moderate needed
• Governance focused
• FISMA (Federal Information Security Modernization Act) or FEDRAMP
• NIST SP 800-37 - Highly proficient
• Risk Assessment
• Cyber risk framework
• Project Management skills
• Risk Control
Responsibilities:
Essential responsibilities:
• The ideal candidate for this role will have the ability to blend and apply their technical, organizational, business, and cyber security abilities, to:
• Support *** District risk strategies, identify risks in Bank processes and technologies, and lead improvement initiatives to minimize risk.
• Support the application of security policy within the *** District and contribute insights to policy discussions as needed.
• Support and advise partners to enable them to understand Bank and *** security controls, policies, and procedures.
• Establish and foster long-term relationships with partners and contacts in assigned business areas and partner with them to understand their technical and business requirements to help enable them to do their work securely.
• Advise and assess application development teams on Secure Cloud Development and Operations to enable them to mature their practices and processes.
• Understand technical implementation details necessary to assess security risk in Cloud and on-prem environments and recommend security control improvements or identify mitigating controls.
• Perform complex analysis of security issues and advise business partners on relevant risks and mitigations.
• Evaluate external service providers to identify and communicate associated risks and identify shared security responsibility between the vendor and the ***.
• Perform security control assessments and prepare assessment reports to document assessment scope, procedures, findings, and recommendations; interpret the significance of assessment findings, conclude on findings, and make practical recommendations for remediation.
• Communicate security risk and implications to partners at all levels, including executives.
• Collaborate and influence work multi-functionally; navigate ambiguity while leading multiple projects simultaneously in a fast-paced, results-driven environment, accepting accountability of the process and delivering on commitments.
Qualifications:
• Moderate Peraton
• Local to SF who can come onsite or LA or SLC,
• USC only
• Soft skills, parterning with many different people at different levels. Ability to convey and communicate risk to multiple parties.
About the Company
VARITE has a definite spirit. A spirit that derives from the promise of what we do that comes with knowing our services are helping businesses to implement their technology initiatives. At Varite, we provide contract and permanent staffing services to Fortune 100 companies in the USA. With 1000+ Global teams and operations in the USA, UK, CANADA, and INDIA, VARITE is currently engaged with leading technology, financial, automotive, defense, energy, pharmaceuticals/life sciences, semiconductor, and engineering companies to pr...
Know more