Vacancy expired!
Custom Computer Specialists is looking for a Cyber Risk Analyst to join our team! This person will travel to our client sites and analyze, explain and implement the best practices to keep their environment running meticulously and safe.This team member will also serve as a “Compliance Manager” for clients with respect to Cyber Insurance requirements, State Security and Privacy requirements (2D in NY state), HIPAA, PCI and other applicable regulatory requirements.
Duties:- Manage Security elements on/off site and various 3rd party vendors.
- Build Security polices to reflect NIST Framework and Best Practices.
- Implement and document various policies including Security, Privacy, Incident Response, Breach Notification, etc.
- Outputs include: Vulnerability Assessments to various standards (PCI, HIPAA, NIST, 2D, etc.)
- BIA Documentation
- Incident response plans
- BCP/DR plans
- Firewall Reviews & Configuration recommendations
- Vulnerability / Risk Management Dashboard, remedial plans
- NIST Framework
- Management of various security elements including MDR/EDR, SOC, SIEM,
- Security Awareness Training, Data Loss Prevention, Dark Web Monitoring, etc.
- Weekly KPI’s for Security and Compliance
- Experience managing to one or more: MITRE, HIPAA, PCI, NIST, 2D, SOC, SSAE, HITRUST
- CISSP, HCISPP, CISA, CISM, CISO or equivalent certification
- Experience implementing Security tools & frameworks in a variety of environments: Next-Gen AV & Firewalls, Managed SOC, MDR, SIEM, Security Operations Automation, Security Awareness training/campaigns
- Previous roles managing Infrastructure technology and Application Security
- Bachelor’s or Master’s in computer science or related field