at Cianbro in Pittsfield, Maine, United States
Job Description
The IT Risk Management Security Analyst III leads various information security and IT risk-related systems and technologies including user awareness education, compliance, audit, and legal administrative support including other systems relevant to the information security program. This individual participates in assigned tasks as it relates to regulatory compliance, risk assessments, related activities, and remediation efforts; evaluates and performs Risk Assessments of current and incoming systems, coordinates regular assessments or system audits, and maintains the system risk registers.; works on complex problems where analysis of situations requires an in-depth evaluation of various factors; completes assigned tasks of significant complexity related to projects and technical requests and provides advanced support in all areas of the department's tasks and initiatives; provides advanced direction and prioritization in all areas of the department; and assists the department director in recruiting, orienting, and supervising staff.
Job Responsibilities:
Acts as backup for certain departmental leadership functions.
Assists customers with understanding the total cost of ownership issues related to hardware and software.
Identifies, recommends, and implements significant opportunities for process improvement both inside and outside of the department.
Assists customers with understanding the total cost of ownership issues related to hardware and software.
Works conscientiously to minimize cost and time requirements in all areas of departmental responsibility.
Assists the director with the development of the departmental budget.
Other duties as consistent with this role.
Qualifications/Requirements:
5-7 years relevant experience (preferably in information systems/cybersecurity technology
Bachelor's degree in a related field or equivalent, relevant experience
One or more of the following certifications (preferred)
CGEIT
CRISC
GRCP
CISA
Able to interact effectively with customers, information systems resources, peers, and management staff from all Cianbro companies, and vendors in a manner that represents Cianbro positively.
Communicate in a professional, positive, and timely manner in person, on the phone, and via electronic means.
Proficient in using GRC (Governance/Risk/Compliance) tools for monitoring performance, troubleshooting problems, and analyzing metrics.
Proficient in supporting front-end and back-end application systems and associated troubleshooting techniques.
Proficient in Construction, DoD, and compliance regulations. Ability to interpret and apply to Cianbro business systems and processes.
Proficient in cybersecurity best practices, security terms, and DoD-related privacy regulations.
Proficient regulatory compliance requirements such as CMMC, HIPAA, SOX, etc.
Proficient in implementing new security systems into an existing environment.
Proficient with digital marketing tools and excellent written communication skills.
Cianbro is an employee-owned, tobacco-free, equal opportunity employer, we do not discriminate based on marital status, race, color, creed, gender, sex, religion, national origin, gender identity, age, veteran status, union affiliation, physical or mental disability, citizenship status, sexual orientation, genetic information, or other legally protected status.
Professionals
Cianbro is an employee owned, tobacco-free, equal opportunity employer of women, minorities, veterans, individuals with disabilities and other protected categories.
