Job Overview :
We are looking for an experienced IT Security Analyst with a strong background in vendor risk assessments, gap assessments, and information security audits. The ideal candidate will have at least 4 years of IT security experience and possess excellent communication skills. This role requires a proactive approach to identifying and mitigating security risks associated with vendors and third-party service providers.
Key Responsibilities :
Vendor Risk Assessments :
– Conduct comprehensive vendor risk assessments to evaluate the security posture of third-party vendors.
– Identify potential security risks and vulnerabilities associated with vendor relationships.
Gap Assessments and Audits :
– Perform gap assessments and information security audits to identify weaknesses in existing security controls and processes.
– Recommend remediation measures to address identified gaps and vulnerabilities.
Communication and Collaboration :
– Collaborate with cross-functional teams, vendors, and stakeholders to communicate findings and recommendations.
– Provide guidance and support to internal teams on vendor risk management best practices.
Policy and Compliance :
– Ensure compliance with industry regulations, standards, and best practices related to IT security and vendor management.
– Assist in developing and updating security policies, procedures, and guidelines.
Qualifications :
– Bachelor’s/Master’s degree in Information Security, Computer Science, or related field.
– Minimum of 4 years of experience in IT security, with a focus on vendor risk assessments, gap assessments, and information security audits.
– Strong understanding of security frameworks, regulations, and standards (e.g., ISO 27001, NIST, GDPR).
– Excellent communication and interpersonal skills.
– Ability to analyze complex security issues and develop practical solutions.
– Relevant certifications (e.g., CISSP, CISA, CRISC) are a plus.
(ref:hirist.tech)…