Previous Job
Previous
Senior Information Risk Analyst
Ref No.: 18-08906
Location: Tampa, Florida
Hiring in Tampa, FL or Dallas, TX


The Senior Information Risk Analyst is responsible for performing risk assessments of applications, infrastructure, business and technology vendors against a defined risk framework. These assessments will be conducted either through a formalized risk assessment program or through other risk reporting activities (e.g., policy exceptions, risk acceptance). The Senior Information Risk Analyst is responsible for driving the strategic risk assessment program across the organization and provide advice and guidance to business managers, Business Information Security Officers (BISOs), and information risk analysts. S/he will assist and support the Head Of Risk Assessment with the development of strategic program elements.


• Participate in and drive strategic information risk assessment process improvement
• Develop infrastructure and IT Process assessments for use across the computing environment
• Develop and manage the Information Security delivery of the Vendor Risk Assessment program
• Schedule and perform information risk assessments using methodology; identify, document and communicate control deficiencies in business processes and technology systems
• Assist Information Security Analysts with complex risk decisions and provide advice and guidance where required
• Work with the business and technology to agree cybersecurity risk findings identified through the risk assessment (e.g., vendor, application, infrastructure), new initiatives, and ad hoc processes
• Provide risk remediation recommendations that the business and technology may implement to mitigate identified control gaps
• Partner with business and IT to ensure that risks are clearly articulated in a manner that is understood by business and technology audiences
• Evaluate management responses to ensure that remediation plans and tasks adequately address identified control gaps
• Perform peer reviews of assessments performed by Information Risk Analysts