343 security risk analyst jobs at 263 companies in United States
3d
Save
Mark Applied
Hide
3d
Security Risk Analyst
Hamilton, New Jersey, United States
$69k-$97k/yrOnsiteFull Time
RWJBarnabas Health: Provides comprehensive academic healthcare services and medical research.
1+ YOEExperience performing security risk assessments in healthcare, knowledge of HIPAA privacy/security, 1+ year enterprise IT experience, CompTIA Security/Network preferred, bachelor's in IT preferred.
Xcel EnergyNASDAQ: XEL: Provides electricity and natural gas services to multi-state customers.
3+ YOEMinimum 3 years security experience, 2 years risk assessment/audit experience, knowledge of security frameworks (NIST/ISO), GRC tooling, IT security technologies, and strong communication skills.
Rutgers University: Providing higher education degrees and conducting academic research.
5+ YOEBachelor's in a related field and 5+ years information security experience; knowledge of HIPAA, GLBA, PCI DSS, NIST CSF; experience with GRC/VRM; strong communication and risk assessment skills.
HIPAA, GLBA, PCI DSS, NIST CSF, NIST 800-171, ISO 27001, ISO 27002, GRC, VRM
Banc of CaliforniaNYSE: BANC: Commercial bank providing business lending and treasury management services.
7+ YOEBachelor’s degree; 7+ years GRC/cybersecurity experience with cloud/security architecture; experience conducting enterprise risk assessments and translating requirements into architectural controls; strong communication and leadership; related certifications preferred.
Amerisure: Provides commercial property and casualty insurance for businesses.
5+ YOE5+ years cybersecurity experience; advanced cyber risk certification (CISSP, CISM, CRISC, CCSP, or AWS Security); 2+ years control testing; SOC 2 review, third-party risk assessments, NIST expertise, Logicgate experience, and ability to translate risk to business leaders.
NIST CSF, New York State Department of Financial Services (NYDFS), NIS2, PCI DSS, Logicgate
University of Minnesota: Public research university providing undergraduate and graduate education.
1+ YOEBachelor's degree plus 2 years relevant experience (or Master's); 1 year information security risk assessment experience; strong communication and analytical skills; knowledge of security standards and regulations.
Pittsburgh or Bécancour or Montréal or Baie-Comeau or Deschambault
OnsiteFull Time
AlcoaNYSE: AA: Produces aluminum through bauxite mining, refining, and smelting.
6+ YOE6+ years in cybersecurity or IT risk; experience assessing IT and OT risk; knowledge of ISO/NIST/CIS frameworks, GRC activities and tools; strong written/verbal communication and facilitation skills; bachelor's degree or equivalent experience.
Governance, Risk, and Compliance (GRC), SIEM, ISO 27001, NIST CSF, NIST 800-53, CIS Controls, SOX
5+ YOEBachelor’s degree in MIS/Computer Science or related; 5+ years in information security/risk; PCI-DSS knowledge; familiarity with COSO, COBIT, ISO, NIST, ITIL; ability to manage multiple tasks.
Victaulic: Manufacturer of mechanical pipe joining and flow control systems.
0+ YOE0–2 years in information security, IT audit, or risk; familiarity with NIST CSF, ISO/IEC 27001, CMMC, and NIS2; experience with risk assessments, third-party audits, cloud/DevOps/application security; CompTIA Security+ or equivalent; CISA preferred.
Lam ResearchNASDAQ: LRCX: Manufacturing equipment used to fabricate advanced semiconductor microchips.
Develop and tune SIEM detections, translate threat intelligence into detections, analyze security telemetry across cloud, endpoint, identity, and network sources; SIEM and scripting experience preferred.
SIEM, Microsoft Sentinel, Splunk, Exabeam, Securonix, KQL, SPL, SQL, Microsoft Defender XDR, Defender for Endpoint, Defender for Identity, Entra ID, Azure, AWS, Google Cloud, UEBA, MITRE ATT&CK, Python, PowerShell, Logic Apps, MISP, STIX/TAXII
Lam ResearchNASDAQ: LRCX: Designs and manufactures wafer fabrication equipment for the semiconductor industry.
Experience developing and tuning SIEM detections, threat hunting, incident response support, familiarity with security telemetry across cloud, endpoint, identity, and network, and scripting/automation skills.
Microsoft Sentinel, Splunk, Exabeam, Securonix, KQL, SPL, SQL, Microsoft Defender XDR, Defender for Endpoint, Defender for Identity, Entra ID, Azure, AWS, Google Cloud, Python, PowerShell, Logic Apps, MISP, STIX/TAXII, MITRE ATT&CK
TikTok: Global short-form video hosting and social media platform.
Technical security analyst for insider risk investigations; strong log and telemetry analysis, IAM and cloud familiarity, EDR and endpoint/cloud/identity investigations, reporting and stakeholder communication.
Okta, Active Directory (AD), GCP, AWS, Azure, Ali Cloud, EDR, VPN, Slack, Microsoft Teams, Git, Python
FISNYSE: FIS: Provides technology solutions for merchants, banks, and capital markets
3+ YOEBachelor's in computer science or equivalent, 3+ years applicable experience desired, knowledge of IT general controls, strong communication, time management, problem-solving, stakeholder and project management, and controls assurance/testing.
Electrosoft Services: Federal cybersecurity, digital engineering, and IT solutions provider
5+ YOE5+ years in cybersecurity/IT or related field; Python, SQL, HTML/CSS, Qlik/Databricks experience; 8140-compliant cert (e.g., GCFA, GCIA, CySA+, GICSP, CFR); Bachelor's in CS/CE/IT/Cyber or equivalent; active Secret clearance.
Deaconess Health System: Provides acute hospital care and specialized medical services.
4+ YOE4+ years in cybersecurity or related field; knowledge of risk assessment, frameworks; HIPAA, PCI-DSS familiarity; vulnerability management, SIEM; Bachelor's in IT/security; certifications preferred.
SHEIN: Global online retailer selling affordable fashion and lifestyle products.
5+ YOE5+ years in security risk management, bachelor’s in info security/CS/engineering, strong knowledge of security/privacy standards, experience with risk frameworks and assessments, strong communication and analytical skills.