Security Analyst III

Job Description:

• Individual will contribute to the driving of the cybersecurity strategy and supporting initiatives that identify, manage, and ultimately reduce cyber threat.
• Candidate will act as a key resource in managing the internal cyber assessments utilizing industry based cyber control frameworks as well as utilization and expansion of cyber risk quantification efforts.
• Candidate should be capable of leveraging industry experience of Cyber frameworks to include CRI Cyber Profile, NIST CSF, ISO 27001, MAS, etc.. as well as quantitative analysis tools such as ISF's IRAM2, FAIR, etc.
• Reviews and analyzes complex data and information to provide insights, conclusions and actionable recommendations; provides direction and guidance on reports and analyses and ensures recommendations are aligned with customer/business needs and capabilities.
• Recommends course of action to mitigate risk and ensures that appropriate standards are established and met in coordination with the ISD Embedded Control Manager.
• This includes escalating higher-risk change activity for risk treatment.
• Identify operational roadblocks to ensure timely remediation and countermeasures.
• Works closely with other members of the Information Security and various other organizations in a collaborative and goal-oriented manner.
• Contributes to the achievement of area objectives.
• Consults with other IT areas and the businesses and provides professional support for major components of the company's information security infrastructure.
• Ability to analyse risk and control subject matter while understanding the nature of the cyber threat environment facing financial institutions coupled with the necessary commercial/business activities undertaken by the firm.

Qualifications

• Bachelor's degree in computer science or a related discipline, or equivalent work experience required, advanced degree preferred
• Experience in GRC with information security or related technology experience required, experience in the securities or financial services industry is a plus.
• Strong experience with business intelligence data analysis and reporting platforms (SQL, DB2m Power BI, Business Objects, Qlik, Tableau, Excel/PowerPoint, etc.)
• Logical and physical database design skills
• Relentless in the pursuit of continuous cyber hygiene, control completeness, and effectiveness.
• Data lead individual that can collate automated and self-identified risk findings
• Strong analytical and troubleshooting skills
• Self-motivated individual and a team player
• Knowledge and conceptual understanding of a System Development Life Cycle (SDLC)
• Excellent analytical and troubleshooting skills
• Clear, concise and effective written and verbal communication skills
• Exhibit good time management skills, independent thinking and decision-making capabilities.

Job Type: Contract

Pay: $65.00 - $72.00 per hour

Expected hours: No less than 40 per week

Schedule:

• 8 hour shift

Application Question(s):

• Are you comfortable working on W2?
• Are you legally authorized to work in the United States, US Citizen/Green Card Holder?
• Are you willing to work on a contract role?
• Are you willing to work 3 days on-site (2 days remote) in Pittsburgh, PA?
• How many years of experience do you have in IRAM2?
• How many years of experience do you have in Cyber framework?
• How many years of experience do you have in business intelligence data analysis and reporting platforms (SQL, DB2m Power BI, Business Objects, Qlik, Tableau, Excel/PowerPoint, etc.)?
• How many years of experience do you have in GRC with information security or related technology experience?

Ability to Commute:

• East Pittsburgh, PA 15112 (Required)

Ability to Relocate:

• East Pittsburgh, PA 15112: Relocate before starting work (Required)

Work Location: Hybrid remote in East Pittsburgh, PA 15112

Salary : $65 - $72