IT Risk & Threat Analyst

Work closely with other technical, incident management, and security analysts to develop a fuller understanding of cyber threat actor s intent, objectives, and activities of cyber threat actors and define a world-class cyber defense program.

• Conduct research and evaluate technical and all-source cyber intelligence to develop in-depth assessments of threats to the organization s networks, systems, users, and data.
• Ensure effective execution of the risk management framework by managing relationships with key stakeholders within strategic business groups and technology.
• Verify that IT risks are appropriately mitigated and lead multiple stakeholders in agreement on appropriate solutions/controls
• Create technical assessments and cyber threat profiles of current events based on the inventive collection and research using classified and open information sources to enable advanced threat intelligence
• Develop, track, and report on Key Risk Indicators (KRIs) for information technology.
• Monitor, track, and report mitigation and resolution of IT risks.
• Perform process-level walkthroughs, control testing, etc. for the identification and assessment of IT risks and controls.

Have a bachelor s degree in IT or computer science.

• Have 5+ years of IT experience within a similar role.
• Have professional certifications like CISSP, CISM, CISA, or CRISC.
• Understand key technology concepts such as access control, confidential data, encryption, business continuity, info-sec scans, and vendor apps.
• Have a strong knowledge of IT organization business processes and systems including (IT Security, data management, architectural and planning, technology life cycle management, regulatory concerns).
• Have a strong communication skill to work effectively with employees at all levels of the organization.
• Have excellent problem-solving skills and the ability to be highly productive, working alone and as part of a team.