Wednesday, September 02, 2015

IT Risk Management Jobs: IT Risk Management Analyst, Sacramento, CA, Relocation Available

IT Risk Management Analyst
Status: Newly Created Position
Compensation: $80,000+
Location: Sacramento, CA
Relocation: Available has been engaged to build an Information Security and IT Risk Management team.  This role contributes to the overall Information Systems Risk Management Program. This expansion role is responsible for contributing to the development, maintenance and implementation of the Information Systems Risk Management Program. The IT Risk Management Analyst conducts risk assessments and analysis of Business associates, IT Systems and / or processes and recommends controls to mitigate loss of data and to maintain confidentiality, integrity, and availability.   This position requires specialization in one or more areas of IT infrastructure, information systems, applications, platforms, or processes.  
The IT Risk Management Analyst will:
  • Conduct IT Risk analysis over new IT products and services, third-party vendors, and internal systems and processes.
  • Evaluate and recommend controls to mitigate identified risks to acceptable levels.
  • Review customer requests for information or proposals related to the protection of information, IT compliance and technical support services and provides required data.
  • Provide assistance to IT Audit, Internal Audit and other departments regarding IT Risk Management issues and controls.
  • Monitor risk notifications from vendors and assist with appropriate documentation and responses.

  • US Citizenship with the ability to obtain government clearance
  • BA/BS in Computer Science or Information Security or equivalent work experience preferred.
  • Current CISSP, CISA, CRISC, CISM or other equivalent information security or risk management certification preferred.
  • Minimum of three years experience in Information Technology and/or networks with at least one year of experience in information systems and security, risk management and access controls, applications, platforms or processes or IT audit related positions.
  • Excellent oral and written communication skills are required.
  • Basic knowledge of laws and regulations impacting data protection and confidentiality, integrity, and availability of systems and data such as HIPAA, HI-TECH, Sarbanes-Oxley, and state regulations.
  • Knowledge of all phases or risk assessment including identification, analysis, impact evaluation, response, reporting and tracking.
  • Strong analytical, planning, problem solving and time management skills.
  • Interpersonal skills to interface with internal and external parties in a professional manner.
  • Knowledge of how technologies, processes, and controls impact risk in both the information systems and corporate business environment.
  • Ability to travel in support of onsite assessments.

Apply On Line:'s Security Recruiter Blog