Security Analyst I
SteerLean Consulting
Date: 15 hours ago
Contract type: Contractor
Remote
Duties
Remote role
EWs are expected to work in Central EU time zone hours
A minimum of 1 year of experience in a security analyst role, with a demonstrated track record of success in developing and implementing security measures. They will analyze and assess supplier risk and discuss mitigations with supplier and internal stakeholders.
Own supplier cybersecurity assessments from start to finish, including information gathering, identifying risks, communicating risks to stakeholders, and advising on mitigation controls.
Closely collaborate with internal business stakeholders, team members, and third-party contacts.
Review legal contracts with our suppliers to ensure security clauses incorporate the desired requirements.
interact directly with vendors to understand their security controls and negotiate mitigating controls
Perform the third-party risk assessments with minimum supervision.
Skills
Knowledge of Security Principles, Security Assessment and Analysis, Security Frameworks and Standards: ISO, SOC, NIST, or PCI DSS. Strong consulting skills, including the ability to communicate complex security concepts to non-technical stakeholders.
Education
A bachelor's or master's degree in computer science, information technology, or a related field is preferred. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) may also be required or highly valued.
Remote role
EWs are expected to work in Central EU time zone hours
A minimum of 1 year of experience in a security analyst role, with a demonstrated track record of success in developing and implementing security measures. They will analyze and assess supplier risk and discuss mitigations with supplier and internal stakeholders.
Own supplier cybersecurity assessments from start to finish, including information gathering, identifying risks, communicating risks to stakeholders, and advising on mitigation controls.
Closely collaborate with internal business stakeholders, team members, and third-party contacts.
Review legal contracts with our suppliers to ensure security clauses incorporate the desired requirements.
interact directly with vendors to understand their security controls and negotiate mitigating controls
Perform the third-party risk assessments with minimum supervision.
Skills
Knowledge of Security Principles, Security Assessment and Analysis, Security Frameworks and Standards: ISO, SOC, NIST, or PCI DSS. Strong consulting skills, including the ability to communicate complex security concepts to non-technical stakeholders.
Education
A bachelor's or master's degree in computer science, information technology, or a related field is preferred. Relevant certifications such as Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) may also be required or highly valued.
See more Remote jobs