Search Jobs
Find your next opportunity here.
The Panther Group
https://www.thepanthergrp.com/wp-content/uploads/2022/03/sm-logo-200x200-1.png
https://www.thepanthergrp.com
https://www.thepanthergrp.com
USD
34.00
HOUR
true
Cyber Security Analyst 2
Posted: 01/03/2024
2024-01-03
2024-08-26
Employment Type:
Contract
Job Number: 41228
Pay Rate: 34.00
Job Description
Skill 1 Information Security
Skill 2 Project Management
Skill 3 Communication and Stakeholder Engagement
The Cybersecurity Risk Analyst within the Information Security Office will be responsible for conducting in-depth risk assessments, aimed
at identifying and evaluating threats to the information assets and business processes. This role also involves ensuring that all security
measures comply with regulatory standards and developing strategies to  mitigate identified risks. A significant part of the duties includes
collaborating with various teams to provide security recommendations and  preparing detailed reports for stakeholders. The position demands staying current with advancements in information security, risk assessment  methodologies, and regulatory frameworks to effectively apply this
knowledge in safeguarding state operations.
Key Responsibilities:
Risk Assessment and Analysis:
• Conduct comprehensive information security risk assessments across
various agencies.
• Identify, assess, and measure risks in systems, applications, technical
environments, networks, and workflows.
• Clearly document vulnerabilities, including their potential impact,
likelihood of exploitation, and affected areas.
• Prepare detailed risk assessment reports to guide management actions
on identified risks.
Risk Mitigation and Compliance:
• Compare current security measures against regulatory expectations and
assess the effectiveness of security controls.
• Collaborate with stakeholders to develop mitigation plans to reduce risks
to acceptable levels.
• Provide consultative advice for the development and implementation of
risk response plans.
• Evaluate and recommend improvements in policies, processes, and
standards to bridge security gaps.
Stakeholder Engagement and Program Development:
• Manage relationships with business partners and lead discussions on
information security risks and mitigation strategies.
• Assist in the development and deployment of training materials to
promote compliance and risk awareness.
• Contribute to the development of operational practices, procedures, and
activities supporting the Risk Management Program initiatives.
KNOWLEDGES, SKILLS, AND ABILITIES REQUIRED:
• Strong understanding of information security principles, concepts, and
best practices.
• Expertise in risk assessment processes for information technology
systems.
• Knowledge of security frameworks and standards (e.g., NIST
Cybersecurity Framework, CIS Controls)
• Knowledge of Industry Compliance Standards (e.g., HIPAA, IRS Pub1075, CMS, PCI, CJIS, Social Security Administration)
• Ability to analyze technical vulnerabilities and assess their impact on
security.
• Ability to create comprehensive risk assessment reports and present
findings to stakeholders.
• Ability to manage risk assessment projects, set priorities, and meet
deadlines.
• Ability to make decisions, use discretion and display sound judgement.
• Effective written and oral communication skills.
• Ability to develop plans, policies, and procedures that meet regulatory
compliance requirements.
MINIMUM QUALIFICATIONS: Demonstrated experience in risk
management, including the capability to effectively document and present
risk assessment findings, proficiency in understanding and applying
information security principles, and knowledge of relevant laws, policies,
and regulations related to information security
Skill 2 Project Management
Skill 3 Communication and Stakeholder Engagement
The Cybersecurity Risk Analyst within the Information Security Office will be responsible for conducting in-depth risk assessments, aimed
at identifying and evaluating threats to the information assets and business processes. This role also involves ensuring that all security
measures comply with regulatory standards and developing strategies to  mitigate identified risks. A significant part of the duties includes
collaborating with various teams to provide security recommendations and  preparing detailed reports for stakeholders. The position demands staying current with advancements in information security, risk assessment  methodologies, and regulatory frameworks to effectively apply this
knowledge in safeguarding state operations.
Key Responsibilities:
Risk Assessment and Analysis:
• Conduct comprehensive information security risk assessments across
various agencies.
• Identify, assess, and measure risks in systems, applications, technical
environments, networks, and workflows.
• Clearly document vulnerabilities, including their potential impact,
likelihood of exploitation, and affected areas.
• Prepare detailed risk assessment reports to guide management actions
on identified risks.
Risk Mitigation and Compliance:
• Compare current security measures against regulatory expectations and
assess the effectiveness of security controls.
• Collaborate with stakeholders to develop mitigation plans to reduce risks
to acceptable levels.
• Provide consultative advice for the development and implementation of
risk response plans.
• Evaluate and recommend improvements in policies, processes, and
standards to bridge security gaps.
Stakeholder Engagement and Program Development:
• Manage relationships with business partners and lead discussions on
information security risks and mitigation strategies.
• Assist in the development and deployment of training materials to
promote compliance and risk awareness.
• Contribute to the development of operational practices, procedures, and
activities supporting the Risk Management Program initiatives.
KNOWLEDGES, SKILLS, AND ABILITIES REQUIRED:
• Strong understanding of information security principles, concepts, and
best practices.
• Expertise in risk assessment processes for information technology
systems.
• Knowledge of security frameworks and standards (e.g., NIST
Cybersecurity Framework, CIS Controls)
• Knowledge of Industry Compliance Standards (e.g., HIPAA, IRS Pub1075, CMS, PCI, CJIS, Social Security Administration)
• Ability to analyze technical vulnerabilities and assess their impact on
security.
• Ability to create comprehensive risk assessment reports and present
findings to stakeholders.
• Ability to manage risk assessment projects, set priorities, and meet
deadlines.
• Ability to make decisions, use discretion and display sound judgement.
• Effective written and oral communication skills.
• Ability to develop plans, policies, and procedures that meet regulatory
compliance requirements.
MINIMUM QUALIFICATIONS: Demonstrated experience in risk
management, including the capability to effectively document and present
risk assessment findings, proficiency in understanding and applying
information security principles, and knowledge of relevant laws, policies,
and regulations related to information security
Meet Your Recruiter
Talyn Scarbrough
Talyn is an IT staffing specialist with 5+ years of experience between both recruiting and sales in STEM environments. Talyn is focused on the candidate experience while finding the win-win situations matching candidates with the right opportunity for their career.
Fun Fact: Avid Pittsburgh Steelers fan!
Share This Job:
Related Jobs:
Login to save this search and get notified of similar positions.About Augusta, ME
Ready to take the next step in your career? Explore our job opportunities in and around Augusta, Maine! Nestled in the heart of New England, Augusta offers a perfect blend of countryside charm and vibrant city life. With its rich history, breathtaking landscapes, and proximity to the beautiful Kennebec River, Augusta provides endless opportunities for personal and professional growth. Enjoy the local cuisine at favorites like Red Barn, discover art at the Harlow Gallery, catch a show at the historic Augusta Colonial Theater, or immerse yourself in nature at the nearby Capitol Park. Join us in Augusta, ME, where every career path leads to adventure and success. Start your journey today!
