Job Summary The Sr. Cybersecurity Risk Analyst is responsible for leading and maturing the ... Principal Duties and Responsibilities Risk Management and Governance * Lead the development and ...
Job Summary The Sr. Cybersecurity Risk Analyst is responsible for leading and maturing the ... Principal Duties and Responsibilities Risk Management and Governance * Lead the development and ...
Job Summary The Sr. Cybersecurity Risk Analyst is responsible for leading and maturing the ... Principal Duties and Responsibilities Risk Management and Governance * Lead the development and ...
Job Summary The Sr. Cybersecurity Risk Analyst is responsible for leading and maturing the ... Principal Duties and Responsibilities Risk Management and Governance * Lead the development and ...
... cybersecurity experience. * Advanced Cyber Risk Management domain specific professional ... Analyze data and security trends to anticipate and assess potential threats. * Stay current with ...
... cybersecurity experience. * Advanced Cyber Risk Management domain specific professional ... Analyze data and security trends to anticipate and assess potential threats. * Stay current with ...
... cybersecurity experience. * Advanced Cyber Risk Management domain specific professional ... Analyze data and security trends to anticipate and assess potential threats. * Stay current with ...
... cybersecurity experience. * Advanced Cyber Risk Management domain specific professional ... Analyze data and security trends to anticipate and assess potential threats. * Stay current with ...
... cybersecurity experience. * Advanced Cyber Risk Management domain specific professional ... Analyze data and security trends to anticipate and assess potential threats. * Stay current with ...
... cybersecurity experience. * Advanced Cyber Risk Management domain specific professional ... Analyze data and security trends to anticipate and assess potential threats. * Stay current with ...
... cybersecurity experience. * Advanced Cyber Risk Management domain specific professional ... Analyze data and security trends to anticipate and assess potential threats. * Stay current with ...
... cybersecurity experience. * Advanced Cyber Risk Management domain specific professional ... Analyze data and security trends to anticipate and assess potential threats. * Stay current with ...
... Analysts to operate and manage cyber security platforms. In this critical role, you'll be ... Conduct risk assessments and support compliance regulatory standards * Provide client support and ...
... Analysts to operate and manage cyber security platforms. In this critical role, you'll be ... Conduct risk assessments and support compliance regulatory standards * Provide client support and ...
Risk Analyst
Sterling Heights, MI · On-site
Develop and implement Project Risk Management Clients projects * Conduct and Facilitate Project Risk Management activities consistent with project contracts and plans * Develop and implement Project ...
Risk Analyst
Sterling Heights, MI · On-site
Develop and implement Project Risk Management Clients projects * Conduct and Facilitate Project Risk Management activities consistent with project contracts and plans * Develop and implement Project ...
... Risk Management. Our Tech Advisory and Delivery Chapter within BCG Platinion helps clients solve ... Analyzing cybersecurity standards, regulatory requirements, and best practices and translating that ...
... Risk Management. Our Tech Advisory and Delivery Chapter within BCG Platinion helps clients solve ... Analyzing cybersecurity standards, regulatory requirements, and best practices and translating that ...
Summary The Risk Analyst is responsible for risk management process implementation throughout the project and for tailoring the risk management process as the project/program progresses through the ...
Summary The Risk Analyst is responsible for risk management process implementation throughout the project and for tailoring the risk management process as the project/program progresses through the ...
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST ... Excellent analytical, technical, and problem-solving skills, with strong attention to detail
If yes, consider joining Baker Tilly (BT) as an IT Audit, Cybersecurity & Risk Manager (HITRUST ... Excellent analytical, technical, and problem-solving skills, with strong attention to detail
Company Description OpTech is an award-winning talent management firm providing Information ... Information Security experience (preferably Third Party Risk Management and Compliance) Familiarity ...
Company Description OpTech is an award-winning talent management firm providing Information ... Information Security experience (preferably Third Party Risk Management and Compliance) Familiarity ...
Third-Party Risk Analyst
Mason, MI · On-site +1
Support centralized third party risk management activities across the lifecycle of a third party ... Analytical thinker with the ability to evaluate requirements, policies, procedures and professional ...
Third-Party Risk Analyst
Mason, MI · On-site +1
Support centralized third party risk management activities across the lifecycle of a third party ... Analytical thinker with the ability to evaluate requirements, policies, procedures and professional ...
Support centralized third party risk management activities across the lifecycle of a third party ... Analytical thinker with the ability to evaluate requirements, policies, procedures and professional ...
Support centralized third party risk management activities across the lifecycle of a third party ... Analytical thinker with the ability to evaluate requirements, policies, procedures and professional ...
Cyber Security Engineer
Dearborn, MI · On-site
... the vulnerability management space to design, prioritize, and enable risk-reducing technical ... Demonstrated problem-solving skills, analytical thinking, and the ability to explain complex ...
Cyber Security Engineer
Dearborn, MI · On-site
... the vulnerability management space to design, prioritize, and enable risk-reducing technical ... Demonstrated problem-solving skills, analytical thinking, and the ability to explain complex ...
SENIOR MANAGER- CYBERSECURITY ENGINEERING Important Company Update - Please Read Before Applying ... Drive automation and analytics to improve detection accuracy and reduce response times Operational ...
SENIOR MANAGER- CYBERSECURITY ENGINEERING Important Company Update - Please Read Before Applying ... Drive automation and analytics to improve detection accuracy and reduce response times Operational ...
SENIOR MANAGER- CYBERSECURITY ENGINEERING Important Company Update - Please Read Before Applying ... Drive automation and analytics to improve detection accuracy and reduce response times Operational ...
SENIOR MANAGER- CYBERSECURITY ENGINEERING Important Company Update - Please Read Before Applying ... Drive automation and analytics to improve detection accuracy and reduce response times Operational ...
IT Security Analyst
Lansing, MI · On-site
... the Cyber Security, Risk and Compliance Division Director with the enterprise risk management ... Perform gap analysis of security requirements implemented within the agency application(s ...
IT Security Analyst
Lansing, MI · On-site
... the Cyber Security, Risk and Compliance Division Director with the enterprise risk management ... Perform gap analysis of security requirements implemented within the agency application(s ...
SENIOR MANAGER- CYBERSECURITY ENGINEERING Important Company Update - Please Read Before Applying ... Drive automation and analytics to improve detection accuracy and reduce response times Operational ...
SENIOR MANAGER- CYBERSECURITY ENGINEERING Important Company Update - Please Read Before Applying ... Drive automation and analytics to improve detection accuracy and reduce response times Operational ...
Manager, Cybersecurity and Managed Services
Southfield, MI · Hybrid
$133K/yr
Oversees multiple project plans, sets targets for milestones, and identifies and mitigates risk to ... Leads data collection and analysis efforts, guides the team in client interviews, and collaborates ...
Manager, Cybersecurity and Managed Services
Southfield, MI · Hybrid
$133K/yr
Oversees multiple project plans, sets targets for milestones, and identifies and mitigates risk to ... Leads data collection and analysis efforts, guides the team in client interviews, and collaborates ...
Manager Cyber Security Risk Analyst information
What is the difference between Manager Cyber Security Risk Analyst vs Cyber Security Risk Analyst?
| Aspect | Manager Cyber Security Risk Analyst | Cyber Security Risk Analyst |
|---|---|---|
| Certifications | CISSP, CISM, CRISC | CISSP, CISA, CompTIA Security+ |
| Work Environment | Oversees teams, strategic planning | Analyzes risks, implements security measures |
| Employer & Industry Usage | Financial, healthcare, tech firms | Same industries, entry to mid-level roles |
The main difference is that the Manager Cyber Security Risk Analyst leads teams and develops security strategies, while the Cyber Security Risk Analyst focuses on assessing risks and implementing security controls. The manager role involves more leadership and strategic planning, whereas the analyst role is more hands-on with risk assessment tasks.
What are the most commonly searched types of Cyber Security Risk Analyst jobs in Michigan? The most popular types of Cyber Security Risk Analyst jobs in Michigan are:
What cities in Michigan are hiring for Manager Cyber Security Risk Analyst jobs? Cities in Michigan with the most Manager Cyber Security Risk Analyst job openings:
Key responsibilities
Lead the development and ongoing maintenance of the enterprise cybersecurity risk register, including risk identification, classification, ownership, and tracking.
Conduct and lead risk assessments for systems, applications, projects, and business initiatives, and develop and track risk mitigation and remediation plans to closure.
Develop and mature a third-party cybersecurity risk management program, including conducting security risk assessments of vendors, SaaS providers, software, and external partners.
UFP Industries rating
7.3
Based on 87 frontline employees who took The Breakroom Quiz
310th of 527 rated manufacturers
Job description
Job Summary
The Sr. Cybersecurity Risk Analyst is responsible for leading and maturing the organization's cybersecurity risk management program. This role is accountable for identifying, assessing, and communicating cybersecurity risks across the enterprise, while driving alignment with regulatory requirements, including CMMC. The position will play a key role in building and maintaining the enterprise risk register, developing a third-party risk management program, and partnering with IT teams to establish and maintain secure standards and practices.
The ideal candidate combines strong analytical skills with practical experience in governance, risk, and compliance, and can translate technical risk into actionable business decisions.
Location: Onsite out of our Grand Rapids, MI office.
Work Authorization: Applicants must be currently authorized to work.
Principal Duties and Responsibilities
Risk Management and Governance
Regulatory Compliance (CMMC and Related Frameworks)
Third-Party Risk Management
Security Standards and IT Partnership
Reporting and Communication
Continuous Improvement
Qualifications
Required
Preferred
The Company is an Equal Opportunity Employer.
The Sr. Cybersecurity Risk Analyst is responsible for leading and maturing the organization's cybersecurity risk management program. This role is accountable for identifying, assessing, and communicating cybersecurity risks across the enterprise, while driving alignment with regulatory requirements, including CMMC. The position will play a key role in building and maintaining the enterprise risk register, developing a third-party risk management program, and partnering with IT teams to establish and maintain secure standards and practices.
The ideal candidate combines strong analytical skills with practical experience in governance, risk, and compliance, and can translate technical risk into actionable business decisions.
Location: Onsite out of our Grand Rapids, MI office.
Work Authorization: Applicants must be currently authorized to work.
Principal Duties and Responsibilities
Risk Management and Governance
- Lead the development and ongoing maintenance of the enterprise cybersecurity risk register, including risk identification, classification, ownership, and tracking.
- Conduct and lead risk assessments for systems, applications, projects, and business initiatives.
- Develop and implement risk management processes, methodologies, and reporting metrics.
- Facilitate risk review sessions with business and IT stakeholders to ensure accountability and transparency.
- Develop and track risk mitigation and remediation plans to closure.
Regulatory Compliance (CMMC and Related Frameworks)
- Support and maintain the organization's CMMC compliance program, including control mapping, evidence collection, and audit readiness.
- Partner with internal stakeholders (IT, Legal, HR, Plant Operations) to ensure alignment with CMMC and other regulatory requirements.
- Assist in preparing documentation and responses for assessments, audits, and regulatory inquiries.
- Monitor evolving compliance requirements and translate them into actionable internal controls.
Third-Party Risk Management
- Develop and mature a third-party cybersecurity risk management program.
- Conduct security risk assessments of vendors, SaaS providers, Software, and external partners.
- Evaluate vendor security posture, shared responsibility models, and contractual security requirements.
- Partner with procurement and legal teams to integrate security requirements into vendor onboarding and contracting processes.
Security Standards and IT Partnership
- Collaborate with IT and engineering teams to develop, implement, and maintain cybersecurity standards and secure configuration baselines.
- Ensure security requirements are embedded into system design, architecture, and operational processes.
- Provide risk-based guidance on system hardening, segmentation, and control implementation.
- Support the development of policies, standards, and procedures that are practical, enforceable, and auditable.
Reporting and Communication
- Communicate risk findings, trends, and recommendations to technical and non-technical stakeholders, including leadership.
- Develop reporting for executive audiences, including risk summaries, metrics, and program maturity updates.
- Support audit committee and leadership reporting as needed.
Continuous Improvement
- Stay current on cybersecurity threats, regulatory changes, and industry best practices.
- Identify opportunities to improve risk visibility, coverage, and program efficiency.
- Mentor junior analysts and contribute to the maturity of the GRC function.
Qualifications
Required
- Bachelor's degree in Information Security, Computer Science, or related field (or equivalent experience).
- 5+ years of experience in cybersecurity risk, governance, or compliance roles.
- Experience building or maintaining a cybersecurity risk register and risk management processes.
- Strong understanding of security frameworks (e.g., NIST, CMMC, ISO 27001).
- Experience conducting third-party/vendor risk assessments.
- Strong analytical, problem-solving, and risk evaluation skills.
- Ability to translate technical risks into business impact.
- Strong written and verbal communication skills.
Preferred
- Experience supporting CMMC assessments or similar regulatory compliance programs.
- Familiarity with manufacturing or operational technology (OT) environments.
- Experience developing security standards or working closely with infrastructure and engineering teams.
- Professional certifications such as CISSP, CISM, CRISC, or similar.
The Company is an Equal Opportunity Employer.
What UFP Industries employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About UFP Industries
Sourced by ZipRecruiter
Universal Forest Products, Inc., is a U.S.-based global corporation that finds reward in its roots and its hard-earned success. Founded in 1955 as a supplier of lumber to the manufactured housing industry, Universal today is a multibillion-dollar holding company with subsidiaries around the globe that serve three robust markets: retail, industrial and construction. Since 1993, Universal has been publicly traded (Nasdaq: UFPI). We re headquartered in Grand Rapids, Michigan.
Industry
Wood product manufacturing
Company size
10,000+ Employees
Headquarters location
Grand Rapids, MI, US
Year founded
1955