Bachelor's degree in information security, Information Assurance, Computer Science, Information ... Advanced understanding of risk management concepts, frameworks, and methodologies. * Strong ...
Bachelor's degree in information security, Information Assurance, Computer Science, Information ... Advanced understanding of risk management concepts, frameworks, and methodologies. * Strong ...
Deep expertise in Information Security Engineering, Risk Management, and Security Risk Management. * Strong knowledge of Protective Security, Crisis Management, and Business Continuity principles.
Deep expertise in Information Security Engineering, Risk Management, and Security Risk Management. * Strong knowledge of Protective Security, Crisis Management, and Business Continuity principles.
Security Leadership & Program Oversight * Provide strategic leadership for all GMS security ... Risk Assessment & Operational Support * Monitor national and international events to identify ...
Security Leadership & Program Oversight * Provide strategic leadership for all GMS security ... Risk Assessment & Operational Support * Monitor national and international events to identify ...
Perform security reviews for new technologies, projects, and strategic initiatives. * Lead third-party and vendor security risk assessments and due diligence activities. Compliance & Security ...
Perform security reviews for new technologies, projects, and strategic initiatives. * Lead third-party and vendor security risk assessments and due diligence activities. Compliance & Security ...
Security Engineering Manager
Atlanta, GA · On-site
Your team's purview spans endpoint security, SaaS security risk, AI guardrails and enablement, and Data Protection to name a few-a broad and consequential scope that touches every FanDueler. You will ...
Security Engineering Manager
Atlanta, GA · On-site
Your team's purview spans endpoint security, SaaS security risk, AI guardrails and enablement, and Data Protection to name a few-a broad and consequential scope that touches every FanDueler. You will ...
Security Engineering Manager
Atlanta, GA · On-site
Your team's purview spans endpoint security, SaaS security risk, AI guardrails and enablement, and Data Protection to name a few-a broad and consequential scope that touches every FanDueler. You will ...
Security Engineering Manager
Atlanta, GA · On-site
Your team's purview spans endpoint security, SaaS security risk, AI guardrails and enablement, and Data Protection to name a few-a broad and consequential scope that touches every FanDueler. You will ...
The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures implemented for managed systems and applications, as well as support Third Party Risk ...
The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures implemented for managed systems and applications, as well as support Third Party Risk ...
Senior Associate, Cybersecurity Advisory & Risk Management
Atlanta, GA · On-site
$95K - $110K/yr
We help healthcare organizations manage risk, strengthen security programs, achieve compliance objectives, and improve cybersecurity maturity through practical, business-focused advisory services.
Quick apply
Senior Associate, Cybersecurity Advisory & Risk Management
Atlanta, GA · On-site
$95K - $110K/yr
We help healthcare organizations manage risk, strengthen security programs, achieve compliance objectives, and improve cybersecurity maturity through practical, business-focused advisory services.
Conduct technical risk assessments, vulnerability analyses, and security architecture reviews to identify gaps and enhance protection of corporate assets. • Tooling, Automation & Optimization:
Conduct technical risk assessments, vulnerability analyses, and security architecture reviews to identify gaps and enhance protection of corporate assets. • Tooling, Automation & Optimization:
... Security/ECC ,In-depth with TMS, Upgrade TMS System/SAC (Analytic Cloud) + Resume and JD related ... Strong knowledge of Sarbanes-Oxley (SOX) compliance, including risk assessment, mitigating controls ...
Quick apply
... Security/ECC ,In-depth with TMS, Upgrade TMS System/SAC (Analytic Cloud) + Resume and JD related ... Strong knowledge of Sarbanes-Oxley (SOX) compliance, including risk assessment, mitigating controls ...
Performing third-party security risk assessments, especially for cloud service providers and ... responding to third-party requests for information on CNO's information security program/policies
Performing third-party security risk assessments, especially for cloud service providers and ... responding to third-party requests for information on CNO's information security program/policies
Perform security reviews for new technologies, projects, and strategic initiatives. * Lead third-party and vendor security risk assessments and due diligence activities. Compliance & Security ...
Perform security reviews for new technologies, projects, and strategic initiatives. * Lead third-party and vendor security risk assessments and due diligence activities. Compliance & Security ...
Compliance and Risk Management : * Ensure compliance with all relevant laws, regulations, and industry standards. * Oversee security risk assessments and implement appropriate mitigation measures.
Compliance and Risk Management : * Ensure compliance with all relevant laws, regulations, and industry standards. * Oversee security risk assessments and implement appropriate mitigation measures.
Senior Application Security Engineer
Alpharetta, GA · Hybrid
$56.75 - $75.75/hr
Develop dashboards and reports to communicate security risk to engineering teams and leadership. * Design and integrate OSS security tooling, including JFrog Artifactory/Xray or Sonatype Nexus ...
Senior Application Security Engineer
Alpharetta, GA · Hybrid
$56.75 - $75.75/hr
Develop dashboards and reports to communicate security risk to engineering teams and leadership. * Design and integrate OSS security tooling, including JFrog Artifactory/Xray or Sonatype Nexus ...
This role will drive a risk-based security posture , ensure sustainable, audit-ready controls while reduce organizational risk and maintaining a defensible compliance position. The GRC Lead provides ...
This role will drive a risk-based security posture , ensure sustainable, audit-ready controls while reduce organizational risk and maintaining a defensible compliance position. The GRC Lead provides ...
This role will drive a risk-based security posture, ensure sustainable, audit-ready controls while reduce organizational risk and maintaining a defensible compliance position. The GRC Lead provides ...
This role will drive a risk-based security posture, ensure sustainable, audit-ready controls while reduce organizational risk and maintaining a defensible compliance position. The GRC Lead provides ...
This role will drive a risk-based security posture , ensure sustainable, audit-ready controls while reduce organizational risk and maintaining a defensible compliance position. The GRC Lead provides ...
This role will drive a risk-based security posture , ensure sustainable, audit-ready controls while reduce organizational risk and maintaining a defensible compliance position. The GRC Lead provides ...
The Security & Compliance Specialist is responsible for reducing security risk and incidents across Spinen and all client environments by defining, enforcing, and sustaining strong baseline security ...
The Security & Compliance Specialist is responsible for reducing security risk and incidents across Spinen and all client environments by defining, enforcing, and sustaining strong baseline security ...
The Security & Compliance Specialist is responsible for reducing security risk and incidents across Spinen and all client environments by defining, enforcing, and sustaining strong baseline security ...
The Security & Compliance Specialist is responsible for reducing security risk and incidents across Spinen and all client environments by defining, enforcing, and sustaining strong baseline security ...
The Office of Security is dedicated to protecting our people, clients, and organization. We are ... This role is critical to helping the Firm manage personnel risk, meet legal and contractual ...
The Office of Security is dedicated to protecting our people, clients, and organization. We are ... This role is critical to helping the Firm manage personnel risk, meet legal and contractual ...
Security Risk information
What is the difference between Security Risk vs Security Analyst?
| Aspect | Security Risk | Security Analyst |
|---|---|---|
| Required Credentials | Knowledge of security principles, risk assessment skills | Certifications like CompTIA Security+, CISSP, or CISA |
| Work Environment | Identifying potential threats, assessing vulnerabilities | Monitoring security systems, analyzing security data |
| Employer & Industry Usage | Used across industries to identify threats | Commonly employed in cybersecurity teams |
| Search & Comparison Intent | Understanding risk factors and mitigation | Analyzing security incidents and improving defenses |
Security Risk involves identifying and assessing potential threats to an organization, focusing on risk management strategies. Security Analysts, on the other hand, monitor and analyze security systems to detect and respond to threats. While both roles require security knowledge and certifications, Security Risk professionals focus on risk assessment, whereas Security Analysts are more involved in operational security monitoring.
What are security risk professionals?
Security risk professionals are experts who identify, assess, and mitigate potential threats to an organization's physical and digital assets. Their responsibilities include conducting risk assessments, developing security policies, and ensuring compliance with regulations. They work to minimize vulnerabilities that could lead to data breaches, theft, or other security incidents. These professionals may also train staff on security best practices and respond to security incidents as they arise.
Can you make $500,000 a year in cyber security?
Security risk professionals, such as senior cybersecurity managers or specialists with extensive experience and advanced certifications, can potentially earn $500,000 or more annually, especially in high-demand industries or senior leadership roles. Achieving this level typically requires a combination of specialized skills, leadership responsibilities, and often working in large organizations or consulting firms.
Is SOC 1 entry level?
SOC 1 (System and Organization Controls 1) reports are audit reports used by organizations to demonstrate controls over financial reporting. The term SOC 1 itself does not refer to a job role; however, professionals involved in SOC 1 audits, such as auditors or IT security specialists, typically require experience in internal controls and auditing standards, with entry-level roles often requiring relevant certifications like CPA or CISA. Entry-level positions in cybersecurity or audit firms may assist with SOC 1 assessments, but the certification and experience level vary by role.
What is the highest paying security job?
The highest paying security jobs are often executive-level roles such as Chief Security Officer (CSO) or Security Director, which can earn six-figure salaries. These positions typically require extensive experience, leadership skills, and knowledge of risk management, cybersecurity, and compliance.
What are some common challenges faced by Security Risk professionals, and how can they overcome them?
Security Risk professionals often face challenges such as staying updated with rapidly evolving threats, balancing security needs with business objectives, and gaining buy-in from stakeholders for risk mitigation strategies. To overcome these, it’s essential to engage in continuous learning, build strong cross-functional relationships, and communicate the value of security initiatives in business terms. Developing robust reporting and assessment processes can also help identify risks early and ensure effective collaboration across departments.
What are the key skills and qualifications needed to thrive as a Security Risk Analyst, and why are they important?
To thrive as a Security Risk Analyst, you need a strong understanding of information security principles, risk assessment methodologies, and relevant regulations, typically supported by a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), vulnerability assessment tools, and certifications like CISSP or CISM are highly valued. Analytical thinking, attention to detail, and effective communication skills help convey risk findings and collaborate with diverse stakeholders. These competencies are crucial for identifying threats, minimizing vulnerabilities, and ensuring organizational resilience against security risks.
Is security risk management a good career?
Security risk management is a growing field that involves identifying, assessing, and mitigating security threats to organizations. It requires strong analytical skills, knowledge of security protocols, and often certifications like CISSP or CISM. The profession offers opportunities in various industries, with increasing demand for professionals to protect digital and physical assets.
What are popular job titles related to Security Risk jobs in Georgia? For Security Risk jobs in Georgia, the most frequently searched job titles are:
What job categories do people searching Security Risk jobs in Georgia look for? The top searched job categories for Security Risk jobs in Georgia are:
Other
Medical, Dental, Vision, Retirement, PTO
Posted 19 days ago
Job description
Manager, Cybersecurity Governance and Risk, Atlanta, GA
The Manager, Cybersecurity Governance and Risk will lead IT risk management (ITRM) initiatives to increase the transparency of risk impacts to the firm, manage the Cyber risk register, issue log, facilitate the Risk Operating Committee (ROC), and support the Governance and Risk team in identifying and implementing industry standards (e.g., NIST, ISO and COBIT) in accordance with applicable regulatory or client guidelines. The Manager will also assist in developing methodologies, policies, processes, and tools to support InfoSec and Governance and Risk initiatives. The role will contribute to evolving ITRM's oversight, reporting, governance, communications, and education efforts from an Information Security perspective. This position is 100% Onsite and not open for Remote.
Manager, Cybersecurity Governance and Risk Responsibilities:
- Assist with the development, implementation and management of the governance and risk strategic plan and roadmap, including evolving the reporting structure and frequency to InfoSec stakeholders.
- Serve as a key contributor in identifying, managing and communicating governance and risk across InfoSec policy domains, providing expertise to prioritize and manage risk, while facilitating the adoption in conjunction with the Controls Manager of IT Risk policies, standards and guidelines across the enterprise.
- In conjunction with the Controls and TPRM Managers, evolve, develop and manage the development, maintenance and evaluation of organizational InfoSec governance and risk procedures, processes and guidelines in accordance with Firm and Client requirements.
- Work with the Controls Manager and other stakeholders to identify, validate and document deficiencies in ITRM governance, processes and risk management practices, propose remediations, and enforce cross functional POAM initiatives and status reporting requirements in accordance with prioritization requirements.
- Manage the Cyber risk and issue registers and remediations, including supporting monthly ROC meetings (e.g., agenda, data calls, etc.), tracking and aggregating the risk registers and performing risk to policy domain to control(s) mapping to provide prioritization and transparency into control and policy domains requiring remediation.
- Evolve risk methodologies, as well as conduct and support risk assessments to support InfoSec the identification of risk across policy domains, identify opportunities for control enhancement and risk mitigation.
- Assist InfoSec's TPRM and Client InfoSec Assessments, including assessment activities (completion and quality control reviews), developing or revising control narratives and supporting reporting efforts to InfoSec leadership and stakeholders.
- Facilitate the definition and maintenance of InfoSec governance and risk measures and metrics; and handle additional related projects as assigned.
Manager, Cybersecurity Governance and Risk Qualifications:
- Bachelor's degree in information security, Information Assurance, Computer Science, Information Systems, or other related field (2 years of additional experience may be substituted for 2 years of college credits).
- At least 7 years of combined information technology, information security and risk management experience.
- Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat landscape.
- Advanced understanding of risk management concepts, frameworks, and methodologies.
- Strong understanding of information security concepts and technologies.
- Strong project management skills and understanding of the technology and operational risks as related to technology solutions.
- Fundamental knowledge of the operation of law practices and advanced knowledge of MS Outlook, Word, Excel, Visio, and PowerPoint.
- Third party assessment experience, including the evaluation of SOC2 Type 2, SIG, Pen Test, etc., reports.
- Strong understanding of Operational Risk from a Technology perspective.
- Excellent analytical and problem-solving skills, inquisitive nature and comfort challenging current practices.
- Understanding of governance, risk and compliance (GRC) practices and technologies across governance, process and technical domains.
- Background in consulting preferred.
- Ability to develop and maintain solid working relationships across the departments, and high-level technical understanding of security applications, platforms and architectures.
- CISA, CISM, GSEC, CISSP, CRISC or other security-related certification preferred.
Benefits include medical insurance, retirement plan, Dental, Vision, PTO, etc.