Remote Jobs

Information Security Risk Assessment Sr. Analyst

New

What's your preference?

Apply and Get Job UpdatesApply without job updates
PayCompetitive
LocationRemote
Employment typeFull-Time

  • Job Description

      Req#: 912
      Hello All,

      Greetings from Rootshell Inc.

      Rootshell Enterprise Technologies Inc. is a recognized provider of professional IT Consulting services in the US. We are actively seeking Information Security Risk Assessment Sr. Analyst for one of our client, Please share your resume with current location & full contact info

      Role: Information Security Risk Assessment Sr. Analyst

      Location: San Jose or Remote

      Job Summary:

      Key Responsibilities:
      • Conduct security risk assessments to identify, score and document potential risks from
      threats and vulnerabilities within the organization's infrastructure and applications.
      • Perform control effectiveness assessment by collaborating with cross-functional teams to
      understand technical implementations and assess control strength
      • Communicate identified security risks and their potential impact to stakeholders,
      including technical and non-technical audiences.
      • Track and report on the status of risk remediation efforts, ensuring timely resolution and
      compliance with organizational policies.
      • Maintain security risk register and ensure timely updates of the risk register
      • Contribute to performing risk aggregation and risk analysis to identify top risks and areas
      of focus/improvement for prioritization
      • Contribute to developing detailed reports and presentations on risk assessments,
      including identified aggregated top risks, risk treatment progress, trending and
      escalation. Ensure these reports are understandable to technical and non-technical
      stakeholders, including senior management
      • Demonstrate a process-oriented, results-driven approach to security risk engineering,
      employing effective problem-solving and communication skills to serve as a subject
      matter expert and trusted advisor
      • Actively contributes to the administration, maintenance and process improvements of the
      GRC risk assessment program
      • Performs other job duties as required
      We'd love to chat if you have:
      • Bachelor's degree in Computer Science, Information Security, or a related field.
      • 5+ years of experience in security risk assessment, with strong background in
      cybersecurity and risk management, with hands-on working knowledge and experience
      in risk management frameworks such as NIST RMF, FAIR, and OWASP
      • Strong technical knowledge of security controls, including but not limited to access
      controls, encryption, network security, and vulnerability management.
      • Demonstrated experience working within a GRC framework, with an understanding of
      regulatory and compliance requirements (e.g., PCI DSS, SOC).
      • Proven ability to work collaboratively with engineering teams to assess and mitigate
      security risks.
      • Experience with security risk remediation programs, including technical implementation
      and compliance considerations.
      • Strong analytical and problem-solving skills, with attention to detail and accuracy.
      • Strong collaboration skills, with experience working cross-functionally with IT,
      Engineering, and other stakeholders.
      • Excellent communication skills, capable of translating technical concepts into actionable
      insights for both technical and non-technical stakeholders.
      • Experience in identifying process improvements and enhancing operational efficiencies
      within security programs.
      • Experience with GRC Risk Management tool including tool implementation will be plus
      Preferred Skills:
      • Experience with security assessment tools and methodologies.
      • Knowledge of cloud security best practices and technologies (e.g., AWS, Azure, GCP).
      • Strong project management skills with the ability to prioritize tasks and manage multiple
      projects simultaneously.
      • Certifications like PMP, CISSP, or CISM are a plus but not required

      With regards

      Naveen | Talent Acquisition

      Rootshell Enterprise Technologies Inc.

      Naveen@rootshellinc.com | www.rootshellinc.com

  • About the company

      The best remote jobs for you

Notice

Talentify is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.

Talentify provides reasonable accommodations to qualified applicants with disabilities, including disabled veterans. Request assistance at accessibility@talentify.io or 407-000-0000.

Federal law requires every new hire to complete Form I-9 and present proof of identity and U.S. work eligibility.

An Automated Employment Decision Tool (AEDT) will score your job-related skills and responses. Bias-audit & data-use details: www.talentify.io/bias-audit-report. NYC applicants may request an alternative process or accommodation at aedt@talentify.io or 407-000-0000.

Other job opportunities

Part-Time Data Entry Clerk
Patient Scheduler (Remote)
Medical Data Entry
Fully Remote | Customer Service - Booking Hotels
Customer Service Representative (Remote)
Data Entry Specialist
Data Entry Specialist - Medical Records (Remote)
Entry Level - Customer Service - Booking Hotels | Work From Home
Scheduler
Customer Service - Booking Hotels | Work Online
SOC Cyber Security Analyst I
Data Entry Processor
Customer Support Specialist - Remote
Executive Assistant
Accounting Clerk - Remote
Fully Remote | Customer Service - Booking Hotels
Online - Hotel Customer Service Coordinator - Entry Level
Data Entry Specialist - Medical Records (Remote)
Healthcare Appointment Scheduler (Work From Home)
Accounts Payable Specialist
Information Security Analyst remote jobs
More information about Remote Jobs