JerseyCityRecruiter Since 2001
the smart solution for Jersey City jobs

Senior IT Risk Assessment Analyst

Company: Recruit Professional Services
Location: Jersey City
Posted on: May 14, 2022

Job Description:

Posted: 04/04/2016 Employment Type: Direct Hire Industry: Other Area(s) Job Number: 93 Job Description
The Senior IT Risk Assessment Analyst coordinates and conducts IT risk and vulnerability assessments and implements controls to address findings. This position is responsible for supporting and offering insight to IT and the business into the risk assessment and mitigation activities that help reduce operational IT risk.

-

Responsibilities

-

Risk Management & Mitigation

  • Identify and assist in the management of IT risk issues.
  • Conducts and assists in IT Risk assessments related to infrastructure, platforms and applications in accordance with IT Risk Program methodology.
  • Conducts and participates in IT third party vulnerability assessments for various disciplines
  • Recommend and implement solutions to address findings from IT risk assessments.
  • Provide quantitative and qualitative information to support the prioritization of tactical and strategic risk mitigation projects.
  • Assist in the development and implementation of new IT risk initiatives, including policies, processes and awareness programs.
  • Establishes processes in the design phase of system wide - IT projects to identify areas of potential risk.
  • Participates in key or major projects across technology that have a high inherent risk profile to assist in establishing risk controls to mitigate the residual risk to an acceptable level.
    -

    Risk Analysis & Measurement
    • Assist in the development of metrics and measurement systems that identify weaknesses in controls and drive remediation.
    • Measure progress of IT Control improvements, based on business value and risk mitigation.
    • Maintain and develop IT Risk guidance and /or applicable policies that outline the desired standards for risk measurement and clear guidelines for practices that may contribute to a reduction in IT risk.
    • Recommend improvements to the tracking of risk mitigation activities and measuring residual risk over time.
    • Recommend enhancements to risk analysis tools.
    • Provide functional and analytical support of GRC tools such as Archer and or applicable databases.
      -

      Qualifications
      • Bachelor' s degree in systems or related discipline or specialized training required.
      • 8+ years of relevant IT work experience which may include Information Security, IT Enterprise Architecture, IT Vendor Assessment, Development, Production Assurance and/ or IT Governance, Risk and Compliance areas
      • 3+ Experience in the financial services industry
      • Experience with IT risk and threat assessment methodologies.
      • Knowledge of Cyber security protocols and industry best practices
      • Knowledge of network and security components, including firewalls.
      • Knowledge of IP, TCP/IP and other network administration protocols, including their vulnerabilities and solutions required.
      • Knowledge of operating platforms, database and sub-system platforms and products.
      • Knowledge of IT Vendor Due Diligence practices
      • Basic knowledge of IT regulatory and compliance requirements.
      • Experience with standard desktop tools, including Microsoft Office.
      • Ability to weigh business needs against risk concerns and articulate issues to management.
      • Ability to handle multiple priorities, while meeting deadlines.
      • Strong problem solving, organizational and project management skills.
      • Strong written and verbal communication skills.
      • Strong interpersonal and relationship management skills.
      • Preferably holds one or more of the following or equivalent certifications: CISSP, CISM, CISA, CIA, CRISC, CGEIT CIAC, ISO
      • Experience with or certification in use of GRC Tools such as Archer
        -
        Jason Destro Over 20 years' of recruiting experience with hands-on recruiting and placement of I.T. professionals (Full Time, Temp 2 Perm, & Contingent) in the NJ/NY/CT/PA marketplace for a wide variety of today's demanding IT skill sets. Focused on delivering exceptional service by understanding client's objectives and goals. Login to save this search and get notified of similar positions. Related Jobs:
        • Senior Information Security Consultant
          Park Ridge
        • Solution Solution Architects - Microsoft Azure
          Park Ridge
        • Account Data Analyst (Contractor Role) to support our compliance effort with Data Classification
          Park Ridge, NJ Login to save this search and get notified of similar positions. "The way we work with our customers in finding the best talent, on time and within budget is unlike anyone else in the industry." Posted: 04/04/2016 Employment Type: Direct Hire Industry: Other Area(s) Job Number: 93 Job Description
          The Senior IT Risk Assessment Analyst coordinates and conducts IT risk and vulnerability assessments and implements controls to address findings. This position is responsible for supporting and offering insight to IT and the business into the risk assessment and mitigation activities that help reduce operational IT risk.

          -

          Responsibilities

          -

          Risk Management & Mitigation
          • Identify and assist in the management of IT risk issues.
          • Conducts and assists in IT Risk assessments related to infrastructure, platforms and applications in accordance with IT Risk Program methodology.
          • Conducts and participates in IT third party vulnerability assessments for various disciplines
          • Recommend and implement solutions to address findings from IT risk assessments.
          • Provide quantitative and qualitative information to support the prioritization of tactical and strategic risk mitigation projects.
          • Assist in the development and implementation of new IT risk initiatives, including policies, processes and awareness programs.
          • Establishes processes in the design phase of system wide - IT projects to identify areas of potential risk.
          • Participates in key or major projects across technology that have a high inherent risk profile to assist in establishing risk controls to mitigate the residual risk to an acceptable level.
            -

            Risk Analysis & Measurement
            • Assist in the development of metrics and measurement systems that identify weaknesses in controls and drive remediation.
            • Measure progress of IT Control improvements, based on business value and risk mitigation.
            • Maintain and develop IT Risk guidance and /or applicable policies that outline the desired standards for risk measurement and clear guidelines for practices that may contribute to a reduction in IT risk.
            • Recommend improvements to the tracking of risk mitigation activities and measuring residual risk over time.
            • Recommend enhancements to risk analysis tools.
            • Provide functional and analytical support of GRC tools such as Archer and or applicable databases.
              -

              Qualifications
              • Bachelor' s degree in systems or related discipline or specialized training required.
              • 8+ years of relevant IT work experience which may include Information Security, IT Enterprise Architecture, IT Vendor Assessment, Development, Production Assurance and/ or IT Governance, Risk and Compliance areas
              • 3+ Experience in the financial services industry
              • Experience with IT risk and threat assessment methodologies.
              • Knowledge of Cyber security protocols and industry best practices
              • Knowledge of network and security components, including firewalls.
              • Knowledge of IP, TCP/IP and other network administration protocols, including their vulnerabilities and solutions required.
              • Knowledge of operating platforms, database and sub-system platforms and products.
              • Knowledge of IT Vendor Due Diligence practices
              • Basic knowledge of IT regulatory and compliance requirements.
              • Experience with standard desktop tools, including Microsoft Office.
              • Ability to weigh business needs against risk concerns and articulate issues to management.
              • Ability to handle multiple priorities, while meeting deadlines.
              • Strong problem solving, organizational and project management skills.
              • Strong written and verbal communication skills.
              • Strong interpersonal and relationship management skills.
              • Preferably holds one or more of the following or equivalent certifications: CISSP, CISM, CISA, CIA, CRISC, CGEIT CIAC, ISO
              • Experience with or certification in use of GRC Tools such as Archer
                -
                Jason Destro Over 20 years' of recruiting experience with hands-on recruiting and placement of I.T. professionals (Full Time, Temp 2 Perm, & Contingent) in the NJ/NY/CT/PA marketplace for a wide variety of today's demanding IT skill sets. Focused on delivering exceptional service by understanding client's objectives and goals. Login to save this search and get notified of similar positions. Related Jobs:Login to save this search and get notified of similar positions.

Keywords: Recruit Professional Services, Jersey City , Senior IT Risk Assessment Analyst, Professions , Jersey City, New Jersey

Click here to apply!

Didn't find what you're looking for? Search again!

I'm looking for
in category
within


Log In or Create An Account

Get the latest New Jersey jobs by following @recnetNJ on Twitter!

Jersey City RSS job feeds