Cybersecurity Governance Analyst III

Job Description

A financial client in the Cincinnati area is seeking a Cybersecurity Governance Analyst III to join their team in a direct hire capacity. This individual will be responsible for providing support to business and IT teams including security consulting for major corporate initiatives and information security projects. Performs risk assessments, security assessments, and policy reviews of WSFG systems and third-party vendors to identify areas of noncompliance with established information security standards and regulations and helps recommend mitigations strategies and countermeasures. Provides security guidance to other IT and project teams in the evaluation, design, or implementation of secure computing environments. Develops, reviews, and monitors information security policies and procedures and makes recommendations for improvement. Identifies and defines overall security requirements for the proper operation and design of business and IT applications to ensure the protection of WSFG systems and data. Contributes to the development of the organization's information security awareness program. Escalates when needed and updates Director on a regular basis.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to [email protected] learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:

Skills and Requirements

• 5+ years in Cybersecurity GRC, IT Risk ,or IT Audit

o Experience with direct ownership of governance activities (controls, internal and external audit support, and policies)

• Experience with executive level risk and metrics reporting, and developing security metrics

• Strong controls focused and audit minded background,

o Third party/vendor risk assessments, control testing, gap identification, and remediation tracking

• Hands on NIST experience - Experience working with risk trending, likelihood/impact scoring, FAIR/CRQ and NY DFS