Iconma

Compensation

Full Description

Our Client, a Health Insurance company, is looking for a Principal Cybersecurity Risk Analyst for their Newark, NJ location. Responsibilities: • Lead third party vendor risk, project risk, or technology risk assessments. Oversee the assessment of the adequacy of a vendor's security program to safeguard Client data. Communicate with business and IT regarding security risks and deficiencies. • Lead ongoing security assessments to validate appropriate controls are in place. Review Vendor reports to acknowledge findings from the security assessments and document remediation action plans. Ensure proper evidence is gathered to facilitate timely closure of remediation plans. • Provide Information Security consulting and subject matter expertise on third party service contracts and/or Sourcing arrangements and internally to junior analysts. • Lead the development and improvement of security processes, assist in metrics development, both within the technology and business organizations. Continuously review and improve the TPRM program, with the intention of improving the efficiency of the workflow as well as the quality of metrics development and reporting. • Lead cross-functional teams to serve as the facilitator between the Information Cyber Security Office and the broader organization. Act as a security advisor and ensure an ongoing awareness of identified risks. • Collaborate with internal ICSO teams to utilize expertise to identify evolving security threats and provide in-depth understanding of "if, how, and when" they should be addressed. Conduct technical research to aid in threat assessment. • Lead the evaluation and assessment of supplier criticality and review changes in scale and scope of services contracted with supplier for material impact. • Actively promote commitment to Client’s Information Security, Enterprise Risk Management and Audit initiatives, as well as its culture of compliance. Internal Relationships: • Legal Affairs, IT Governance, or IT Security Operations • Internal Customers/Users • Internal clients and constituents External Relationships: • 3rd Party Suppliers/Vendors • 4th Party Suppliers/Vendors • External Customers • The information above is intended to describe the general nature of the work being performed by each incumbent assigned to this position. • This job description is not designed to be an exhaustive list of all responsibilities, duties, and skills required of each incumbent. Requirements: • HSD or GED required, Bachelor Degree preferred (or equivalent work experience) • Third party, technology, and project risk assessment experience • Experience with Governance, Risk, and Compliance tools • 5 year experience in Risk Management with advanced understanding of Third-Party Risk Management. • 7 years of experience in an Information Technology Audit/Information Security • Proficient working knowledge within the following risk domains/technologies: • Change Management • IDS/IPS technologies • Firewall technologies • Network Architecture • Vulnerability Management • System/Access Administration • Key Management/Tokenization • Database and application security • Secure Software/Code Development • Physical and Environmental Security • Security Event Logging & Monitoring • Database/Application/Network Layer Secure Protocols • Cloud Security • Identity & Access Management • Business Continuity and Disaster Recovery Management • Automation/Artificial Intelligence • CISSP, CISA, CRISC or equivalent; • Requires a solid understanding of IT security concepts with an emphasis on Security and Risk Assessment. • Requires solid knowledge of IT and computer systems. • Requires familiarity with HIPAA security rules and National Institute of Standards and Technology (NIST) standards • Requires familiarity with Vendor Risk Management. • Suggested familiarity with ServiceNow tool. • Requires strong analytical thinking skills. • Requires excellent verbal and written communication skills. • Requires excellent interpersonal skills and the ability to work effectively with others as a team. • Requires excellent PC skills and demonstrated proficiency with MS Office Suite. • Requires the ability to handle multiple tasks and prioritize effectively. • Ability to train/mentor incoming team members. Why Should You Apply? • Health Benefits • Referral Program • Excellent growth and advancement opportunities As an equal opportunity employer, ICONMA provides an employment environment that supports and encourages the abilities of all persons without regard to race, color, religion, gender, sexual orientation, gender identity or express, ethnicity, national origin, age, disability status, political affiliation, genetics, marital status, protected veteran status, or any other characteristic protected by federal, state, or local laws Benefits: Medical, Dental and Vision, Employee Referral Program, 401K, Life Insurance About the Company: Iconma ICONMA is a global information consulting management firm providing Professional Staffing Services and Project-Based Solutions for organizations in a broad range of industries. • Corporate Headquarters in Troy, Michigan; 20+ locations worldwide. • Certified Woman-Owned Business Enterprise (WBE); certified by Women’s Business Enterprise National Council, National Women Business Owners Corporation (NWBOC); and California Public Utilities Commission (CPUC). • Founded in 2000 • 2000+ Employees The company was founded on the principle that success is derived from delivering high quality service and resources in the most responsive, flexible, and innovative way. ICONMA invests in people and resources with a single goal: To provide our customers with the highest quality service in the most responsive manner. Through its network of offices, ICONMA provides the resources to help clients maintain their competitive advantage. Company Size: 2,000 to 2,499 employees Industry: Management Consulting Services Founded: 2000 Website: https://www.iconma.com/