Find The RightJob.

IT Risk & Security Analyst II or III

Our IT Risk/Security Analysts are responsible for managing IT security policies, coordinating with policy owners, and ensuring alignment with regulatory and frame-work based control requirements.

Key Responsibilities:

Manage the lifecycle of IT security policies and standards
Coordinate with business and technical policy owners to maintain and update policies
Map policies and controls to NIST 800-53 and other applicable frameworks
Perform control validation and compliance reviews
Supports audits and regulatory assessments
Track remediation and ensure policy exceptions and risk acceptances are documented

Location: this position has preference to based in hybrid work location (onsite and WFH). There may be opportunity for fully remote within a mutually acceptable location. #LI-Hybrid

Required Education (must meet one of the following):

Bachelor or International Equivalency degree in Cybersecurity, Computer Science, Electrical Engineering, Information Systems, or closely related field of study; or equivalent work experience (Two years’ relevant work experience is equivalent to one-year college)
Associate Degree in Computer Science, Electrical Engineering, Information Systems, or closely related field of study + 2 years additional experience
Preferred Certification(s): CISM, CRISC, CISSP, or similar industry-related

Required experience: minimum 2-4/+years' experience in cybersecurity, risk, and/or information security, to include:

Working with NIST 800-53 controls
Writing and managing security policies and standards
Background in IT Governance, Risk, and Compliance (GRC)
Working with control owners and validate control implementation

Preferred experience:

Experience in HIPAA-regulated environments
Experience in supporting SOC 2, HITRUST, or NIST CSF programs

As of the date of this posting, a good faith estimate of the current pay range is $78,064 to $117,095 (Analyst II); $96,183 - $144,275 (Analyst III). The position is eligible for an annual incentive bonus (variable depending on company and employee performance). The pay range for this position takes into account a wide range of factors including, but not limited to, specific competencies, relevant education, qualifications, certifications, relevant experience, skills, seniority, performance, travel requirements, internal equity, business or organizational needs, and alignment with market data. At Blue Cross of Idaho, it is not typical for an individual to be hired at or near the top range for the position. Compensation decisions are dependent on factors and circumstances at the time of offer.

We offer a robust package of benefits including paid time off, paid holidays, community service and self-care days, medical/dental/vision/pharmacy insurance, 401(k) matching and non-contributory plan, life insurance, short and long term disability, education reimbursement, employee assistance plan (EAP), adoption assistance program and paid family leave program.

We will adhere to all relevant state and local laws concerning employee leave benefits, in line with our plans and policies.

Reasonable accommodations

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed above are representative of the knowledge, skill and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

We are an Equal Opportunity Employer and do not discriminate against any employee or applicant for employment because of race, color, sex, age, national origin, religion, sexual orientation, gender identity, status as a veteran, and basis of disability or any other federal, state or local protected class.

Similar jobs

No similar jobs found

Term of use Privacy policy