Info. Security Risk Analyst

Company:
Peoplefluent Customer
Location:
Newark, NJ
Job Type:
Full Time
Category:
Risk Management
Yrs of Exp:
1 to 2 years
Posted:
1/9/2013

Related Jobs

Job Description

Summary This position is for an Information Security Risk Analyst (ISRA) The Horizon BCBSNJs Information Security Risk Management program addresses both internal and external risks The ISRA will conduct project and technology based risk assessments within the environment conduct technical and nontechnical third party risk assessments and recommend mitigating action or controls The ISRA will further identify and convey information security physical security business continuity and IT operational requirements to project teams and the Sourcing department in support of new contracts and ongoing engagements The primary responsibility of the ISRA is to identify analyze and recommend mitigation strategies for information security risks Responsibilities Perform third party vendor risk project risk or technology risk assessments Conduct on site security assessments to measure the effectiveness of the third parties current control environment (Travel Required) Conduct ongoing security assessments to validate appropriate controls are in place Document and communicate with business and IT regarding security risks and deficiencies Provide Information Security consulting and subject matter expertise on third party service contracts andor Sourcing arrangements Assess the adequacy of a vendors security program to safeguard Horizon BCBSNJ data Focus on developing and improving security processes assisting in metrics development both within the technology and business organizations Ensure proper evidence is gathered to facilitate timely closure of remediation plans Serve as advisors to the business by ensuring an ongoing awareness of identified risks Utilize expertise to identify evolving security threats and provide indepth understanding of if how and when they should be addressed Evaluate and assess supplier criticality and review changes in scale and scope of services contracted with supplier for material impact Confirm ongoing roles responsibilities and persons involved with the Third Party Manage monitor and track third party compliance to the Third Party Risk Management Program Monitor all applicable risk assessments are completed in the appropriate timeframe based on third party risk tier Individual judgment and decision making will be exercised to determine applicability of certain questions on various assessments based on the vendor service and vendor risk Preferred Qualifications CISSP CISA or equivalent Third party technology and project risk assessment experience Experience with Governance Risk and Compliance tools BA or BS degree in Computer Science Information TechnologySystems or related degree preferred or equivalent experience 1 year experience in Risk Management 36 years of experience in an Information Technology AuditInformation Security Preferred Skills Proficient working knowledge within the following risk domainstechnologies Change Management IDSIPS technologies Firewall technologies Network Architecture Vulnerability Management SystemAccess Administration Key ManagementTokenization Database and application security Secure SoftwareCode Development Physical and Environmental Security Security Event Logging Monitoring DatabaseApplicationNetwork Layer Secure Protocols Knowledge Requires an excellent understanding of IT security concepts with an emphasis on Security and Risk Assessment Requires excellent knowledge of IT and computer systems Requires excellent understanding of internal and external audit process Requires indepth understanding of Public Key Infrastructure (PKI) encryption network security controls tools and functionalities Requires an indepth understanding of Payment Card Industry Data Security Standard (PCIDSS) and proficiency in applying Health Information Portability and Accountability Act (HIPAA) security rules and National Institute of Standards and Technology (NIST) standards Requires demonstrated proficiency in applying Identity Management (IDM) concepts Skills and Abilities Requires exceptional analytical thinking skills Requires excellent verbal and written communication skills Requires the ability to handle multiple tasks and prioritize effectively Requires excellent PC skills and demonstrated proficiency with MS Office Suite Requires excellent interpersonal skills and the ability to work effectively with others as a team Internal Relationships Legal Affairs IT Governance or IT Security Operations Internal CustomersUsers Internal clients and constituents
APPLY NOW


Jobs Like This Near Newark, NJ


(advanced job search)
GO


Click on the button below to go to the Peoplefluent Customer website and apply for Info. Security Risk Analyst.

GO TO EMPLOYER WEBSITE
Calculate Finance salaries:
Play the new finance career game from FINS!

Financial Dream Jobs - Sign Or Decline
You just got an offer for your dream job,
BUT...
You have to learn Arabic.
SIGN DECLINE

  • Copyright ©2013 Dice Holdings, Inc. All rights reserved.
Log into FINS 
FINS Login
 
*Indicates required field
 
User Name*
Password*
     Forgot Your Password?
Or log in using your Facebook account:
Connect with Facebook