... management and boards. Skills & Abilities Information Security & Assurance * Conducts cyber security risk assessments, vulnerability analysis, and business impact assessments. * Interprets and ...
... management and boards. Skills & Abilities Information Security & Assurance * Conducts cyber security risk assessments, vulnerability analysis, and business impact assessments. * Interprets and ...
The position also oversees risk management managers and supports initiatives designed to reduce ... Strong analytical and problem-solving skills * Good planning and organizational skills to balance ...
The position also oversees risk management managers and supports initiatives designed to reduce ... Strong analytical and problem-solving skills * Good planning and organizational skills to balance ...
Cyber Security PM
Atlanta, GA · On-site
$106.70K - $144.20K/yr
Gather and analyze business requirements to align with organizational security and compliance ... Background in security operations or risk management within large organizations.
Quick apply
Cyber Security PM
Atlanta, GA · On-site
$106.70K - $144.20K/yr
Gather and analyze business requirements to align with organizational security and compliance ... Background in security operations or risk management within large organizations.
Risk Manager
Athens, GA · On-site
$70K - $80K/yr
Records management * Workplace health and safety * Regulatory compliance requirements * Gather, analyze, and interpret organizational risk data, trends, and metrics. * Prepare and present risk ...
New
Risk Manager
Athens, GA · On-site
$70K - $80K/yr
Records management * Workplace health and safety * Regulatory compliance requirements * Gather, analyze, and interpret organizational risk data, trends, and metrics. * Prepare and present risk ...
New
Records management * Workplace health and safety * Regulatory compliance requirements * Gather, analyze, and interpret organizational risk data, trends, and metrics. * Prepare and present risk ...
New
Records management * Workplace health and safety * Regulatory compliance requirements * Gather, analyze, and interpret organizational risk data, trends, and metrics. * Prepare and present risk ...
New
Cybersecurity Vulnerability Analyst 2 performs mid-level cybersecurity functions supporting the ... management activities with active threats, incident response efforts and emerging risk trends. The ...
New
Cybersecurity Vulnerability Analyst 2 performs mid-level cybersecurity functions supporting the ... management activities with active threats, incident response efforts and emerging risk trends. The ...
New
Cybersecurity Vulnerability Analyst 2 performs mid-level cybersecurity functions supporting the ... management activities with active threats, incident response efforts and emerging risk trends. The ...
New
Cybersecurity Vulnerability Analyst 2 performs mid-level cybersecurity functions supporting the ... management activities with active threats, incident response efforts and emerging risk trends. The ...
New
... management across the organization. Conduct research and analysis, leveraging data to derive ... Experience with major cybersecurity, technology, operational risk, and data governance frameworks ...
... management across the organization. Conduct research and analysis, leveraging data to derive ... Experience with major cybersecurity, technology, operational risk, and data governance frameworks ...
The ideal candidate brings a strong blend of cybersecurity, risk management, and AI expertise. They ... Strong analytical and critical thinking skills, excellent written, oral communication and ...
The ideal candidate brings a strong blend of cybersecurity, risk management, and AI expertise. They ... Strong analytical and critical thinking skills, excellent written, oral communication and ...
... management across the organization. Conduct research and analysis, leveraging data to derive ... Experience with major cybersecurity, technology, operational risk, and data governance frameworks ...
... management across the organization. Conduct research and analysis, leveraging data to derive ... Experience with major cybersecurity, technology, operational risk, and data governance frameworks ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Director of Risk Management
Riverdale, GA · On-site
The Risk Director will lead incident investigations, manage compliance with regulations, and ... Lead Investigations and analyze actual and potential risks in the facility. Collaborate with the ...
Director of Risk Management
Riverdale, GA · On-site
The Risk Director will lead incident investigations, manage compliance with regulations, and ... Lead Investigations and analyze actual and potential risks in the facility. Collaborate with the ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Director of Risk Management
Riverdale, GA · On-site
The Risk Director will lead incident investigations, manage compliance with regulations, and ... Lead Investigations and analyze actual and potential risks in the facility. Collaborate with the ...
Director of Risk Management
Riverdale, GA · On-site
The Risk Director will lead incident investigations, manage compliance with regulations, and ... Lead Investigations and analyze actual and potential risks in the facility. Collaborate with the ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
The Risk Director will lead incident investigations, manage compliance with regulations, and ... Lead Investigations and analyze actual and potential risks in the facility. Collaborate with the ...
The Risk Director will lead incident investigations, manage compliance with regulations, and ... Lead Investigations and analyze actual and potential risks in the facility. Collaborate with the ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Duties include: * conducting investigations related to patient safety incidents; * risk identification and reduction; * managing, analyzing and presenting risk management data; * collaborating with ...
Cybersecurity Risk Management Analyst information
What are the key skills and qualifications needed to thrive as a Cybersecurity Risk Management Analyst, and why are they important?
To thrive as a Cybersecurity Risk Management Analyst, you need a solid understanding of information security principles, risk assessment methodologies, and regulatory frameworks, typically backed by a degree in cybersecurity or a related field. Familiarity with tools such as risk management software, vulnerability scanners, and certifications like CISSP, CISM, or CRISC is highly valued. Strong analytical thinking, attention to detail, and effective communication skills help in translating technical risks into actionable insights for stakeholders. These skills ensure organizations can proactively identify, assess, and mitigate cyber risks to protect sensitive information and maintain regulatory compliance.
What are some typical challenges a Cybersecurity Risk Management Analyst faces when working with cross-functional teams?
Cybersecurity Risk Management Analysts often collaborate with IT, legal, compliance, and business units to identify and mitigate risks. A common challenge is bridging the communication gap between technical and non-technical stakeholders, ensuring that risk recommendations are understood and actionable. Additionally, balancing business objectives with security requirements can be complex, requiring strong negotiation and diplomacy skills. Analysts must also stay updated on evolving threats while tailoring solutions to each department’s unique needs.
What does a Cybersecurity Risk Management Analyst do?
A Cybersecurity Risk Management Analyst is responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze security policies, conduct risk assessments, and recommend controls to minimize potential threats. Their work involves monitoring security measures, ensuring compliance with regulations, and helping develop strategies to protect the organization from cyberattacks. Ultimately, they play a crucial role in safeguarding sensitive information and supporting overall cybersecurity posture.
What is the difference between Cybersecurity Risk Management Analyst vs Cybersecurity Analyst?
| Aspect | Cybersecurity Risk Management Analyst | Cybersecurity Analyst |
|---|---|---|
| Certifications | CompTIA Security+, CISSP, CISM | CompTIA Security+, CEH, CISSP |
| Work Environment | Focus on risk assessment, policy development, and compliance | Focus on threat detection, incident response, and system monitoring |
| Employer & Industry Usage | Used in organizations prioritizing risk mitigation and compliance | Used across various sectors for security operations and monitoring |
While both roles involve cybersecurity, the Cybersecurity Risk Management Analyst primarily assesses and manages risks, ensuring compliance and policy adherence. In contrast, the Cybersecurity Analyst concentrates on identifying threats, monitoring security systems, and responding to incidents. Both roles are essential but focus on different aspects of cybersecurity defense.
What are popular job titles related to Cybersecurity Risk Management Analyst jobs in Georgia? For Cybersecurity Risk Management Analyst jobs in Georgia, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management Analyst jobs in Georgia look for? The top searched job categories for Cybersecurity Risk Management Analyst jobs in Georgia are:
Senior Consultant - Cyber Security & PCI Qualified Security Assessor
Bloom Equity PartnersAtlanta, GA • Remote
Other
Posted 4 days ago
Job description
Remote Role
Role Purpose The Senior Consultant – Cyber Security & PCI Qualified Security Assessor (QSA) is a senior delivery and trusted-advisor role within our GRC Advisory practice, accountable for leading high-quality cyber security and compliance engagements with a primary focus on PCI DSS, supplemented by broader cyber risk, governance, and assurance services.
The role leads client engagements end-to-end—planning, execution, quality assurance, stakeholder management, and close-out—working independently or leading small project teams. The Senior Consultant contributes actively to the growth, capability, and reputation of the practice. Key Responsibilities & Accountabilities Client Delivery & Engagement Leadership
Information Security & Assurance
Role Purpose The Senior Consultant – Cyber Security & PCI Qualified Security Assessor (QSA) is a senior delivery and trusted-advisor role within our GRC Advisory practice, accountable for leading high-quality cyber security and compliance engagements with a primary focus on PCI DSS, supplemented by broader cyber risk, governance, and assurance services.
The role leads client engagements end-to-end—planning, execution, quality assurance, stakeholder management, and close-out—working independently or leading small project teams. The Senior Consultant contributes actively to the growth, capability, and reputation of the practice. Key Responsibilities & Accountabilities Client Delivery & Engagement Leadership
- Lead cyber security and PCI DSS client engagements from initiation through delivery and closure.
- Act as primary client point of contact, ensuring clear communication, scope control, and expectation management.
- Deliver high-quality, concise, and actionable reports suitable for technical teams, senior management, and executive stakeholders.
- Apply judgement and experience to complex risk and compliance issues, ensuring pragmatic, proportionate recommendations.
- Perform PCI DSS assessments in line with PCI SSC requirements, including:
- Scoping and gap assessments
- On-site and remote assessments
- Completion of SAQs, Reports on Compliance (ROC), and Attestations of Compliance (AOC)
- Provide expert advice on PCI DSS control implementation, compensating controls, and remediation planning.
- Support clients in achieving and maintaining PCI DSS compliance across complex environments.
- Stay current with PCI DSS standard updates, guidance, and assessor program requirements.
- Deliver broader cyber security advisory services, including:
- Information security risk assessments and business impact analysis
- Governance, risk, and compliance (GRC) assessments
- Framework-based assessments (e.g. ISO/IEC 27001, ISO/IEC 42001, NIST CSF, NIST 800-53, SOC 2, HIPAA, SABSA, COBIT)
- Cyber supply chain security and third-party risk assessments
- Advise clients on the design and improvement of cyber security strategies, policies, and control environments.
- Investigate significant security incidents or control failures and recommend control improvements.
- Take responsibility for quality assurance of own work and contributions from junior team members.
- Ensure delivery is compliant with internal methodologies, standards, and contractual requirements.
- Participate in peer reviews, knowledge sharing, and continuous improvement of consulting practices and assets.
- Identify and nurture commercial opportunities during engagements and contribute to account growth.
- Support pre-sales activities including proposal writing, tender responses, and client presentations.
- Mentor consultants and junior team members, supporting their professional and technical development.
- Contribute to internal training, capability development, and thought leadership activities.
- Successful delivery of cyber security and PCI DSS engagements to time, quality, and budget.
- Client satisfaction and trusted-advisor status.
- Identification and support of new commercial opportunities.
- Effective stakeholder engagement and team leadership.
- Contribution to practice capability, knowledge sharing, and mentoring.
- Minimum 2+ years' experience as a PCI DSS Qualified Security Assessor (QSA) delivering PCI DSS engagements.
- Proven experience leading or independently delivering consulting engagements in cyber security or information risk.
- Strong experience completing PCI DSS deliverables including SAQs, ROCs, and AOCs.
- Experience advising clients on scoping, remediation, and ongoing compliance strategies.
- Demonstrable experience working with at least two major security frameworks (e.g. PCI DSS, ISO/IEC 27001, ISO/IEC 42001, NIST CSF, NIST 800-53, SABSA, COBIT).
- Experience communicating complex cyber security concepts to both technical and non-technical stakeholders, including senior management and boards.
Information Security & Assurance
- Conducts cyber security risk assessments, vulnerability analysis, and business impact assessments.
- Interprets and applies security and assurance policies, standards, and regulatory requirements.
- Investigates significant security control failures or incidents and recommends improvements.
- Builds and maintains strong, long-term client relationships.
- Leads stakeholder engagement strategies and manages complex client environments.
- Acts confidently as a trusted advisor.
- Leads medium-scale consulting projects with direct business impact.
- Manages scope, resources, risks, and quality to achieve successful outcomes.
- Uses appropriate delivery approaches (predictive or agile).
- Identifies sales opportunities and contributes to pipeline development.
- Supports pre-sales and proposal activities.
- Understands client business drivers and market context.
- PCI DSS Qualified Security Assessor (QSA) – current and in good standing
- ISO/IEC 27001 Lead Auditor or Lead Implementer
- NIST CSF / NIST 800-53 working knowledge or certification
- One or more of: CISSP, CISM, or CISA
- Bachelor's degree, or equivalent professional experience
- ISO/IEC 42001 Lead Implementer
- SOC 2 audit experience
- HIPAA experience
- CRISC
- Security+ / Network+
- Willingness to travel nationally and internationally.
- Business-level fluency in English.
- Additional languages desirable.
- Client-centric and committed to excellence in service delivery.
- Confident, professional, and credible under pressure.
- Strong integrity, impartiality, and ethical standards.
- Results-focused with strong problem-solving skills.
- Adaptable, collaborative, and open to change.
- Proactive self-manager and mentor to others.
- Strategic thinker who connects long-term objectives with day-to-day delivery.
About Bloom Equity Partners
Sourced by ZipRecruiter
Company size
11 - 50 Employees
Headquarters location
Daly City, CA, US
Year founded
2020