Job Details

Home

Information Security Risk Analyst at Remote, Remote, USA

Email: [email protected]

https://jobs.nvoids.com/job_details.jsp?id=2416469&uid=7f70f1de35a24a79a12ee92ff3ec74ac
From:

Fazal Uddin,

Msys Inc

[email protected]

Reply to: [email protected]

Title: Information Security Risk Analyst
Location: Remote
Length: Long term
Restriction: W2 or C2C
Send resumes to : [email protected]

Description:
Interview Type: Webcam Interview Only *** Very long term project initial PO for 1 year, expect to go for 4+ years *** Remote***
skilled Information Security Risk Analyst on a contract basis to lead the execution of its annual enterprise security risk assessment.
Job Description:
This engagement ensures compliance with industry standard frameworks, supports proactive risk mitigation, & positions NC HIEA for future HITRUST certification.Plan and conduct NC HIEA s annual enterprise security risk assessment using NIST SP 800 30, ISO 27005, or FAIR methodologies.
Ensure full alignment with NIST SP 800 53 Revision 5, including: RA (Risk Assessment), AC (Access Control), SC (System Communications Protection), IR (Incident Response), and more.
Incorporate NIST Privacy Framework and NIST SP 800 53 Rev. 5 privacy control families (AP, AR, DI, DM, IP, SE, TR, UL).
Build and maintain a comprehensive risk register, with treatment plans for mitigation, transfer, acceptance, or avoidance.
Map risks and mitigation efforts to HITRUST CSF control domains to support future certification
Develop and deliver documentation, dashboards, and executive summaries.
Collaborate with internal stakeholders to validate findings and support security governance efforts.
Highly Desired Skills:
Experience in IT risk management, cybersecurity, or information security assessment. 5 Years
Demonstrated knowledge of NIST SP 800 30, NIST SP 800 53 Rev. 5, and NIST Privacy Framework. 5 Years
Experience performing security and privacy risk assessments with documentation aligned to federal and state standards. 5 Years
Familiarity with HIPAA Security and Privacy Rules, and healthcarespecific risk domains. 5 Years
Experience with HITRUST CSF alignment or certification preparation. 5 Years
Strong written and verbal communication skills for technical and executive audiences. 5 Years

Keywords: information technology golang purchase order wtwo Arkansas North Carolina South Carolina
Information Security Risk Analyst
[email protected]
https://jobs.nvoids.com/job_details.jsp?id=2416469&uid=7f70f1de35a24a79a12ee92ff3ec74ac

[email protected]
View All

03:56 AM 10-May-25

To remove this job post send "job_kill 2416469" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

resume@msysinc.com wrote:
From:

Fazal Uddin,

Msys Inc

resume@msysinc.com

Reply to:   resume@msysinc.com

Title: Information Security Risk Analyst
Location: Remote
Length: Long term
Restriction: W2 or C2C
Send resumes to :   fazal@msysinc.com

Description:
Interview Type: Webcam Interview Only *** Very long term project initial PO for 1 year, expect to go for 4+ years *** Remote***
skilled Information Security Risk Analyst on a contract basis to lead the execution of its annual enterprise security risk assessment.
Job Description:
This engagement ensures compliance with industry standard frameworks, supports proactive risk mitigation, & positions NC HIEA for future HITRUST certification.Plan and conduct NC HIEA s annual enterprise security risk assessment using NIST SP 800 30, ISO 27005, or FAIR methodologies.
Ensure full alignment with NIST SP 800 53 Revision 5, including: RA (Risk Assessment), AC (Access Control), SC (System Communications Protection), IR (Incident Response), and more.
 Incorporate NIST Privacy Framework and NIST SP 800 53 Rev. 5 privacy control families (AP, AR, DI, DM, IP, SE, TR, UL).
Build and maintain a comprehensive risk register, with treatment plans for mitigation, transfer, acceptance, or avoidance.
Map risks and mitigation efforts to HITRUST CSF control domains to support future certification
Develop and deliver documentation, dashboards, and executive summaries.
 Collaborate with internal stakeholders to validate findings and support security governance efforts.
Highly Desired Skills:
Experience in IT risk management, cybersecurity, or information security assessment. 5 Years
Demonstrated knowledge of NIST SP 800 30, NIST SP 800 53 Rev. 5, and NIST Privacy Framework. 5 Years
Experience performing security and privacy risk assessments with documentation aligned to federal and state standards. 5 Years
Familiarity with HIPAA Security and Privacy Rules, and healthcarespecific risk domains. 5 Years
Experience with HITRUST CSF alignment or certification preparation. 5 Years
Strong written and verbal communication skills for technical and executive audiences. 5 Years

Keywords: information technology golang purchase order wtwo Arkansas North Carolina South Carolina 
Information Security Risk Analyst
resume@msysinc.com

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]

Time Taken: 0

Location: ,