-
National Life Group Montpelier, United States Full timeMarket Risk Analyst, Enterprise Risk ManagmentThis position will support the identification, measurement, and monitoring of the financial risks of the company. This person will play a key role in quantifying our capital market risks and thus in shaping how risk-based decisions ar ...
-
Junior Pricing Analyst
1 week ago
EventVest South Windsor, United StatesProlific 1 is the largest ticketing distribution company in the United States with millions of tickets sold each year. Join our team of results-driven professionals with a passion for live entertainment If you enjoy sports, music, or theatre and would like to incorporate that int ...
-
Junior Pricing Analyst- Sports
1 week ago
EventVest South Windsor, United StatesProlific 1 is the largest ticketing distribution company in the United States with millions of tickets sold each year. Join our team of results-driven professionals with a passion for live entertainment If you enjoy sports, music, or theatre and would like to incorporate that int ...
-
Retirement Benefits Specialist
1 day ago
National Life Group Montpelier, United StatesRetirement Benefits Analyst · Position Overview: · We are seeking a highly proficient Retirement Benefits Specialist to join our team. The Retirement Benefits Specialist will be pivotal in supporting the administration of our retirement benefits programs, ensuring they remain com ...
-
Cyber Security Specialist
1 week ago
GovCIO Montpelier, United StatesGovCIOCyber Security Specialist (Remote)Montpelier ,VermontApply NowGovCIO is currently hiring for a Cyber Security Specialist With a focus on Risk Management and Network Security, you will collaborate with developers and designers to provide the best value to our customers. You ...
-
Public health analyst
1 week ago
State of Vermont Montpelier, United StatesFull job description · Overview · The Vermont Department of Health (VDH) is excited to hire a Public Health Analyst III (PHA III) in the Research Epidemiology and Evaluation Unit (REE) of the Division of Health Statistics and Informatics (HSI). This position combines team lead ...
-
Business Development Analyst
5 days ago
National Life Group Montpelier, United StatesThe Company · For 175 years, National Life Group ("NLG") has aimed to keep their promises to provide families stability in good times and in bad. And throughout that history, they have provided peace of mind to those families as they plan their futures. · As a mission-driven bu ...
-
Offensive Security Engineer, 3
1 week ago
Oracle Montpelier, United StatesJob Description · The Oracle Cloud Infrastructure (OCI) Offensive Security team provides OCI with the capabilities to ensure our systems and services meet the security objectives we communicate to customers. The Offensive Security group performs security assessments, vulnerabilit ...
-
Technical Project Manager, Data Science
1 week ago
Kansas Action for Children Montpelier, United Statesat CrowdStrike, Inc. in Topeka, Kansas, United States · Job Description CrowdStrike, Inc. · at CrowdStrike, Inc. in Topeka, Kansas, United States · Job Description CrowdStrike, Inc. · Full time · Posted 19 Days Ago · R16069 · #WeAreCrowdStrike and our mission is to stop brea ...
-
Jr. Data Analyst
1 day ago
Hatchit Co Montpelier, United StatesThank you for your interest in joining the JDSAT team. hatch I.T. is facilitating the recruitment process, so please continue your application here for the Jr. Data Analyst All openings are full-time with JDSAT. · Who is JDSAT? Were not a data solutions firm. Were a boutique tech ...
-
Jr. Data Analyst
1 day ago
Hatchit Co Montpelier, United StatesThank you for your interest in joining the JDSAT team. hatch I.T. is facilitating the recruitment process, so please continue your application here for the · If you are considering sending an application, make sure to hit the apply button below after reading through the entire d ...
-
Business Development Analyst
1 week ago
National Life Group Montpelier, United StatesThe CompanyFor 175 years, National Life Group ("NLG") has aimed to keep their promises to provide families stability in good times and in bad. And throughout that history, they have provided peace of mind to those families as they plan their futures.As a mission-driven business, ...
-
Retirement Benefits Specialist
1 week ago
National Life Group Montpelier, United StatesRetirement Benefits Analyst · Position Overview: · We are seeking a highly proficient Retirement Benefits Specialist to join our team. The Retirement Benefits Specialist will be pivotal in supporting the administration of our retirement benefits programs, ensuring they remain c ...
-
Business Support Analyst
4 days ago
State of Vermont Montpelier, United StatesOverview Are you interested in coordinating large IT projects with multiple stakeholders? Do you have a passion for improving the user experience of government services? We are seeking candidates with strong communication skills and a commitment to process improvement to join our ...
-
Business Support Analyst
3 days ago
State of Vermont Montpelier, United StatesOverview · Are you interested in coordinating large IT projects with multiple stakeholders? Do you have a passion for improving the user experience of government services? We are seeking candidates with strong communication skills and a commitment to process improvement to join ...
-
HR Project Manager
2 weeks ago
Public Consulting Group Montpelier, United StatesOverview · About Public Consulting Group · Public Consulting Group LLC (PCG) is a leading public sector solutions implementation and operations improvement firm that partners with health, education, and human services agencies to improve lives. Founded in 1986, PCG employs appr ...
-
Engineer, Cyber Security Operations
1 week ago
Cardinal Health Montpelier, United StatesHeadquartered in Dublin, Ohio, Cardinal Health, Inc. (NYSE: CAH) is a global, integrated healthcare services and products company connecting patients, providers, payers, pharmacists and manufacturers for integrated care coordination and better patient management. Backed by nearly ...
-
Language Data Analyst
1 day ago
Hatchit Co Montpelier, VT, United StatesT. is facilitating the recruitment process, so please continue your application here for the · Data Analyst All openings are full-time with JDSAT. · We're not a data solutions firm. We're a boutique technology company that excels in developing solutions, identifying risks, and ...
-
Jr. Data Analyst
1 day ago
Hatchit Co Montpelier, VT, United StatesThank you for your interest in joining the JDSAT team. hatch I.T. is facilitating the recruitment process, so please continue your application here for the Jr. Data Analyst All openings are full-time with JDSAT. Who is JDSAT? We're not a data solutions firm. We're a boutique tec ...
-
Professional, Field Test Analyst
9 hours ago
Under Armour East Montpelier, United StatesProfessional, Field Test Analyst · Date: May 17, 2024 · Location: Remote, US · Company: Under Armour · Values & Innovation · At Under Armour, we are committed to empowering those who strive for more, and the company's values - Act Sustainably, Celebrate the Wins, Fight on Togethe ...
Security Risk Analyst - Montpelier, United States - The College Board
Description
This job was posted by : For more information, please see: Risk AnalystCollege Board - Risk Management
Location This is a fully remote role.
Candidates who live near CB offices have the option of being fully remote or hybrid (Tuesday and Wednesday in office).
Type:
This is a full-time position
About the Team
The Information Security Governance Risk and Compliance (ISGRC) team at the College Board checks and certifies the College Board\'s Information Security Programs.
ISGRC partners work with business leads to perform necessary security reviews of policies, systems, contracts, and vendors to better understand and manage risk.
About the Opportunity
As a Security Risk Analyst, you will have the critical role of being responsible for evaluating and managing exceptions to IT security policies, for managing the Organization\'s Risk and Control Issues Register (Risk Register), and for developing reports and metrics.
Your strong technical communication and negotiation skills will help you build relationships and collaborate with diverse stakeholders and reduce risk to the organization and ensure compliance.
Under the direction of management, you will manage the Risk Register and perform security policy exceptions to help the College Board understand its critical risks.
In this role you will:
Manage the Risk Register (20%)
Leads the management of the issues and risks and quickly escalates any untimely completion of audit actions.
Works independently to communicate risks and works with others to problem-solve risks to tolerance levels based on data and evidence.
Maintains data quality of Risk Register and executes any required data clean-up exercises.{=html} - Understands College Board work to be able to drive Risk or Control Owners to ensure consistent application of policies and standards. - Raises awareness about Risk & Control Issues, Policy exceptions, and available risk reduction options. - Fosters a culture of risk awareness and compliance within the technology department and across the organization.
Manage Policy Exceptions (65%)
Independently analyzes policy exception submissions and provide risk assessment reports for critical service lines, applications, and infrastructure hosted on-prem and in the cloud.
Manages materials for the Exception Review Board and present exception information to executive leadership and senior team members.
Maintains an up-to-date knowledge and understanding of IT security policies and principles.
Maintains a customer-focused attitude in all interactions with customers and colleagues.
Manage Metrics and Reporting (15%)
Provides weekly and monthly reporting for the Risk Register and policy exceptions.
Produces trending metrics and escalate exceptions.
Performs other duties as assigned.
About You
5-7 years of experience managing or supporting IT Security Risk and Control Risk Register and processing policy exceptions.
Strong understanding of risk management techniques such as: risk identification, risk scoring, risk mitigation, and risk tracking.
The proven ability to lead conversations balancing risk and multiple business needs that result in positive outcomes with multiple stakeholders.
The capacity to assess risk information and make risk recommendations independently.Strong organization and priori ization skills and the proven ability to manage multiple tasks simultaneously, both independently and as a member of the team.
7-10 years of experience in information security; governance, risk, and compliance; and/or information technology projects.{=html} - Excellent verbal and written communication skills. - Experience with governance, risk, and compliance tools (e.g., RSAM, RSA Archer) preferred. - Experience with information security and privacy frameworks such as ISO 27001, COBIT, NIST-CSF, NIST 800-53, GDPR etc. - Current Information Security Certification (e.g., CISSP, CRISC, CISM, CISA, or related security certification) preferred or the ability to attain one within 6 months of hire. - Bachelor\'s degree in computer science, cybersecurity, engineering, IT management or four years equivalent IT and security industry experience. - For remote positions, ability to travel 4 times a year to our Reston, VA office. - Authorization to work for any employer in the USA
About Our Proce