Senior Analyst, Cybersecurity Governance, Risk and Compliance, Washington, DC The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related ...
Senior Analyst, Cybersecurity Governance, Risk and Compliance, Washington, DC The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related ...
Cybersecurity Compliance Analyst
$80K - $120K/yr
The Cybersecurity Compliance analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (i.e. Scorecard, FISMA ...
Cybersecurity Compliance Analyst
$80K - $120K/yr
The Cybersecurity Compliance analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (i.e. Scorecard, FISMA ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
Senior Cybersecurity Supply Chain Risk Management Analyst ID: 1024 Location: Washington, DC Department: Information Technology More about this job > Description G3 Innovative Solutions, LLC is an ...
Senior Cybersecurity Supply Chain Risk Management Analyst ID: 1024 Location: Washington, DC Department: Information Technology More about this job > Description G3 Innovative Solutions, LLC is an ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance ... Malware Analysis Team Members : GIAC Reverse Engineering Malware (GREM) or equivalent DoDD 8140/DoD ...
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance ... Malware Analysis Team Members : GIAC Reverse Engineering Malware (GREM) or equivalent DoDD 8140/DoD ...
Operational Risk Analyst -Security Governance & Risk Issues Management Location: Merrifield VA ... Desired knowledge of NCUA, FFIEC, BSA/AML, NIST (including the Cyber Security Framework and 800 ...
Operational Risk Analyst -Security Governance & Risk Issues Management Location: Merrifield VA ... Desired knowledge of NCUA, FFIEC, BSA/AML, NIST (including the Cyber Security Framework and 800 ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst
Washington, DC · On-site
$114K - $126K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Quick apply
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst
Washington, DC · On-site
$114K - $126K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
cFocus Software seeks a Cyber Security Engineer III to join our program supporting the National ... Analyze vulnerability scan results and prioritize remediation activities based on risk.
Quick apply
cFocus Software seeks a Cyber Security Engineer III to join our program supporting the National ... Analyze vulnerability scan results and prioritize remediation activities based on risk.
The Cybersecurity Compliance analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (i.e. Scorecard, FISMA ...
The Cybersecurity Compliance analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (i.e. Scorecard, FISMA ...
The Cybersecurity Compliance analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (i.e. Scorecard, FISMA ...
The Cybersecurity Compliance analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (i.e. Scorecard, FISMA ...
NIH - Cyber Security Engineer III
Bethesda, MD · On-site +1
cFocus Software seeks a Cyber Security Engineer III to join our program supporting the National ... Analyze vulnerability scan results and prioritize remediation activities based on risk.
NIH - Cyber Security Engineer III
Bethesda, MD · On-site +1
cFocus Software seeks a Cyber Security Engineer III to join our program supporting the National ... Analyze vulnerability scan results and prioritize remediation activities based on risk.
NIH - Cyber Security Engineer II
Bethesda, MD · On-site +1
cFocus Software seeks a Cyber Security Engineer II to join our program supporting the National ... Analyze vulnerability scan results and prioritize remediation activities based on risk.
NIH - Cyber Security Engineer II
Bethesda, MD · On-site +1
cFocus Software seeks a Cyber Security Engineer II to join our program supporting the National ... Analyze vulnerability scan results and prioritize remediation activities based on risk.
cFocus Software seeks a Cyber Security Engineer II to join our program supporting the National ... Analyze vulnerability scan results and prioritize remediation activities based on risk.
Quick apply
cFocus Software seeks a Cyber Security Engineer II to join our program supporting the National ... Analyze vulnerability scan results and prioritize remediation activities based on risk.
Cybersecurity Compliance Analyst
Arlington, VA · On-site
$80K - $120K/yr
The Cybersecurity Compliance analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (i.e. Scorecard, FISMA ...
Cybersecurity Compliance Analyst
Arlington, VA · On-site
$80K - $120K/yr
The Cybersecurity Compliance analyst will serve the Joint Staff (JS) by consolidating JS cybersecurity risk metrics, tracking compliance, and reporting to completion (i.e. Scorecard, FISMA ...
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance ... Malware Analysis Team Members : GIAC Reverse Engineering Malware (GREM) or equivalent DoDD 8140/DoD ...
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance ... Malware Analysis Team Members : GIAC Reverse Engineering Malware (GREM) or equivalent DoDD 8140/DoD ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst #1809720
Washington, DC · On-site
$114K - $126K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst #1809720
Washington, DC · On-site
$114K - $126K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst with Security Clearance
Washington, DC · On-site
$113K - $146K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst with Security Clearance
Washington, DC · On-site
$113K - $146K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance ... Malware Analysis Team Members : GIAC Reverse Engineering Malware (GREM) or equivalent DoDD 8140/DoD ...
Develops techniques and procedures for conducting cybersecurity risk assessments and compliance ... Malware Analysis Team Members : GIAC Reverse Engineering Malware (GREM) or equivalent DoDD 8140/DoD ...
Internship Cyber Security Risk Analyst information
What are the key skills and qualifications needed to thrive as an Internship Cyber Security Risk Analyst, and why are they important?
What is the difference between Internship Cyber Security Risk Analyst vs Cyber Security Risk Analyst?
| Aspect | Internship Cyber Security Risk Analyst | Cyber Security Risk Analyst |
|---|---|---|
| Qualifications | Enrolled in or recent graduate of relevant degree programs; some certifications beneficial | Typically requires professional certifications (e.g., CISSP, CISA) and experience |
| Work Environment | Internship setting, learning-focused, supervised | Full-time, professional role with independent responsibilities |
| Responsibilities | Assisting with risk assessments, supporting security projects, learning procedures | Conducting risk analysis, developing mitigation strategies, managing security protocols |
The Internship Cyber Security Risk Analyst role is an entry-level, learning position designed for students or recent graduates gaining industry experience. In contrast, a Cyber Security Risk Analyst is a full-time professional responsible for managing and analyzing security risks independently. The internship offers foundational exposure, while the full analyst role requires more advanced skills and certifications.
What types of projects or tasks can an intern expect to work on as a Cyber Security Risk Analyst?
What does an Internship Cyber Security Risk Analyst do?
Senior Analyst, Cybersecurity Governance, Risk and Compliance
Washington, DC • On-site
Full-time
Medical, Dental, Vision, Retirement, PTO
Re-posted 9 days ago
Job description
The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related client requests to assess security policies and procedures. The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures implemented for managed systems and applications, as well as support Third Party Risk Management (TPRM) and Governance and Risk functions in conducting vendor due diligence (initial, reassessments and ongoing monitoring) and supporting broader GRC efforts. This position is 100% Onsite and not open for Remote.
Senior Analyst, Cybersecurity Governance, Risk and Compliance Responsibilities:
- Review and understand current IT Risk Management (ITRM) program framework and associated policies, standards, procedures, and processes.
- Prepare and respond to related compliance requests and web-shares including referencing evidentiary artifacts or other documentation.
- Complete external information security assessments, remediation efforts and support status tracking of assessment queues.
- Coordinate with external assessors and internal subject matter experts to address compliance inquiries and web-shares of security artifacts.
- Assist in further defining the process for completing information security control assessments.
- Support metrics and reporting of the Information Security Program through the collection and analysis of effectiveness security control measures.
- Develop understanding of control structure to support the creating or revising standard narratives/responses for client questionnaires (e.g., SIG).
- Work with the CISO, senior managers, managers and other internal stakeholders to report existing information security programs and ongoing security projects that address information security risks and compliance requirements.
- Manage competing deadlines and multiple external inquiries using effective organizational skills and attention to detail as demonstrated by prior work experience.
- Contribute to the creation of GRC related processes and procedures and relevant documents.
- Collaborate with InfoSec, Privacy and GRC management and internal subject matter experts to support coordination, tracking, and reporting of GRC team strategy and goals; and complete other tasks as assigned.
- Participate in efforts to evolve and streamline GRC solutions, processes and procedures.
- Develop and maintain the status tracking related to findings from information security assessments, Governance, Risk and Compliance, and TPRM due diligence/reassessment assessments and associated remediations.
Senior Analyst, Cybersecurity Governance, Risk and Compliance Qualifications:
- Bachelor's degree (required) and at least 5 years of combined information technology and information security experience.
- Strong understanding of multiple risk management concepts, frameworks, and standards (CSC, NIST, ISO, COBIT).
- Strong understanding of information security concepts and technologies.
- Strong understanding of due diligence and compliance documents (e.g. SOC 2 Type 2, ISO 27001 Certification, SIG Questionnaires, Certificates of Insurance, Pen Test, etc.).
- Strong communication skills with the ability to interact with various teams.
- Demonstrated experience with the NIST Cybersecurity Framework and auditing security controls identified in NIST SP800-171 and NIST SP800-53A.
- Experience in the analysis of IT and Security control requirements and understanding of associated technology processes.
- Experience working with internal and external auditing firms.
- Fundamental knowledge of MS Outlook, Word, Excel, Visio, and PowerPoint.
Benefits include medical insurance, retirement plan, Dental, Vision, PTO, etc.
Keywords: Washington DC Jobs, Senior Analyst, Cybersecurity Governance Risk and Compliance, Information Security, Risk Management, CSC, NIST, ISO, COBIT, Cybersecurity Framework, NIST SP800-171, NIST SP800-53A, SOC 2 Type 2, ISO 27001 Certification, SIG Questionnaires, Certificates of Insurance, Pen Test, Washington, DC Recruiters, Information Technology Jobs, IT Jobs, Washington, DC Recruiting
Looking to hire for similar positions in Washington, DC or in other cities? Our IT recruiting agencies and staffing companies can help.
We help companies that are looking to hire Senior Analysts, Cybersecurity Governance Risk and Compliance for jobs in Washington, DC and in other cities too. Please contact our IT recruiting agencies and IT staffing companies today! Phone 630-428-0600 ext. 11 or email us at jobs@nextstepsystems.com. Click here to submit your resume for this job and others.
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT Recruiters, Charlotte IT Recruiters, Chicago Recruiting Agency, Cincinnati Executive Search Firms, Cleveland Executive Tech Recruiting, Columbus Technical Recruiters, Dallas Recruiters for IT, Denver Technology Headhunters, Detroit IT Headhunters, Fort Lauderdale Information Technology Recruiters, Houston IT Recruiters, Indianapolis IT Recruiters, Jacksonville IT Recruiters, Kansas City IT Recruiters, Los Angeles IT Recruiters, Miami IT Recruiters, Minneapolis IT Recruiters, Nashville IT Recruiters, New Jersey Tech Recruiters, New York IT Recruiters, Phoenix IT Recruiters, Raleigh IT Recruiters, Salt Lake City IT Recruitment, San Antonio Information Technology Recruiters, San Diego Executive Staffing, San Francisco Executive Search Firms, San Jose Executive Tech Recruiting, Seattle Technical Recruiters, Silicon Valley Tech Recruiters, St. Louis Technology Headhunters, Tampa Technology Headhunters, Washington DC IT Recruiters
Home"Senior Analyst, Cybersecurity Governance, Risk and Compliance
About Next Step Systems
Sourced by ZipRecruiter
Industry
It services
Company size
11 - 50 Employees
Headquarters location
Naperville, IL, US
Year founded
1995