Security Risk Analyst - Minneapolis, United States - C4 Technical Services

    C4 Technical Services
    C4 Technical Services Minneapolis, United States

    1 month ago

    Default job background
    Description
    Cybersecurity Lead (Developer)

    Location:
    Remote


    Job Description:
    Responsible for managing merger, acquisition, divestiture, and spin-off related cybersecurity activities. Focus will be automated the assessment process (no coding for this role but must be well versed in development/interdependencies/cloud). Strong development background is a must.


    Requirement Criteria:

    • Demonstrated knowledge of program and project management methodologies and best practices, software, and product development lifecycles (SDLC/PDLC) required.
    • 5+ Years of experience
    • Expert knowledge of business and management principles involved in strategic planning, financial planning, resource allocation, and production methods, with an ability to think strategically.
    • Proficient with project-related financial management, including variance analysis, resource forecast to actuals, and capitalized vs. non-capitalized hardware and software management.
    • Strong understanding and experience with multiple security domains, the Security Software Development Life Cycle (SSDLC) process, Security Assessment processes, and Pen Testing.
    • Excellent verbal, written, and presentation skills. In particular, demonstrated ability to effectively communicate technical and business issues and solutions to different organizational levels including executive leadership.,

    Knowledge:

    • Knowledge of information technology (IT) acquisition/procurement requirements.
    • Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions).
    • Knowledge of the acquisition/procurement life cycle process.
    Qualities

    A bachelor's degree in computer science, information technology, or a related field. At least five years of experience in cyber security, risk management, or audit. Knowledge of cyber security frameworks, standards, and best practices

    • Ability to assess and mitigate cyber risks across various domains and systems
    • Excellent communication and presentation skills
    • Certification in cyber security or risk management (e.g., CISSP, CISM, or CRISC) is preferred
    Understanding of insider threat techniques

    Business awareness mindset, with understanding of business terms and processes

    Knowledge of general regulatory requirements

    Strong documentation skillset

    #J-18808-Ljbffr