Job Qualifications
Top Skills & Years of Experience:
- 2-5 years' experience performing cyber risk assessments
- Perform information system risk assessments on cloud or on-premises IT systems
- Perform risk assessments on policy exceptions
- Provide Information Security Officers with recommendations to mitigate identified risk
- Perform third-party risk assessments on vendor security controls
- Assist with vulnerability remediation efforts through the vulnerability remediation program
- Perform internal audit assessments on select controls
- Assist Senior Information Security Officers with internal and external audits, including requesting artifacts, submitting responses and artifacts, and working with the risk team on identified findings
Desired years of experience: 2 years
Nice To Have
- ISACA certification: CRISC or CISA
- ISC(2) certification: CGRC or CISSP