STEFANINI EMEA HAS A JOB FOR YOU

 

<< Back to Job Search Results

Job Details

Cybersecurity Risk Analyst

Job ID#:

42756

Job Category:

EMEA MES - CSS & Network Services

Location:

Remote,  Romania

Position Type:

Employee

 
Job Description

Stefanini EMEA is looking for a Cybersecurity Risk Analyst to join our Cyber Security Services (MSSP) tower in EMEA.

 

Responsibilities: 

  • Represent Cybersecurity from a Cybersecurity Risk Management perspective and execute security risk management leadership through the design and implementation of cybersecurity controls to maintain the confidentiality, integrity and availability of information systems and data.
  • Ability to create, communicate and implement processes for risk management, including the assessment and treatment of identified risks;
  • Generate detailed reports that provide in-depth analysis of assessment findings, including identified risks, control deficiencies, and recommended remediation actions for vendor engagements.
  • Review and interpret results of vendor audit reports and attestations (such as SOC2 reports); identify deficiencies and areas for remediation and advise appropriate stakeholders on findings. May conduct or coordinate periodic vendor audits, in collaboration with Vendor Managers, Internal Audit, and other internal teams as needed.
  • Perform periodic risk and security assessments, review and propose updates to the Information Security Requirements based on risk and security assessments; provide risk analysis, and recommended actions;
  • Assist Customers with identifying the information security gaps;
  • Assist Customers with security exception handling process and provide recommendations accordingly;
  • Perform periodic review of baseline security standards for information technology systems and applications identified by the Customer;

 

 
Job Requirements
 

 Requirements:

  • Prior experience in Security Risk Assessment & GRC-P;
  • Experience in developing information security policies and procedures, as well as successfully executing programmes;
  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT, NIST etc;
  • Prior experience at conducting gap analysis & risk assessments to identify high risk areas and recommend controls to address the risk areas.
  • Fluently in English.
  • Presentation skills.

 

Good to have:

  • Technical cybersecurity knowledge or prior experience in SOC.
  • Understanding of enterprise IT workplace environments, TCP/IP networks also with available security controls (technical & process control) for respective layers;
  • Certification like CISM, CRISC, CGEIT, CISSP or similar.
  • Up to date with NIS2 directive or/and course/training completion in this direction. 
  • Ability to Review and interpret results of vendor audit reports and attestations (such as SOC2 reports); identify deficiencies and areas for remediation and advise appropriate stakeholders on findings. May conduct or coordinate periodic vendor audits, in collaboration with Vendor Managers, Internal Audit, and other internal teams as needed.
  • Experience in conducting comprehensive third-party cyber security assessments utilizing a NIST-based framework; evaluate the security posture of third parties to identify vulnerabilities, gaps, and areas of non-compliance; and identify and recommend security controls, best practices, and risk mitigation strategies in alignment with industry standards and regulatory requirements.


  

What's next:

It's best to apply today, because job postings can be taken down and we wouldn't want you to miss this opportunity.

In case you will need further information, just send us a message at recruitmentEMEA@stefanini.com and we'll be happy to assist!

The preceding job description had been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties and responsibilities required of employees assigned to this job.

Diversity & Inclusion

Here at the Stefanini Group, we value plurality and equity, regardless of race, sexual orientation, disability, age, ancestry, religion, gender, and nationality. We understand and encourage the importance of being you!
  

About us

We are a Brazilian company with over 35 years of experience in delivering IT services worldwide, ranging from IT outsourcing to application development or IT staffing. We have a direct presence in 41 countries, through our 70 offices located throughout the world. We have managed to become the preferred partner of many small-to-midsize local and regional companies as well. Most of our clients come from industries such as financial services, manufacturing, telecommunications, chemical, services, technology, public sector and utilities.

Stefanini has career opportunities locally and around the world for professionals interested in a vibrant, passionate, team-oriented workplace. If you are a customer-centric person with a "get it done" attitude, come over for coffee and a talk on your future career with us! Learn more about us on www.stefanini.com and join us on LinkedIn, Facebook and Instagram where we regularly post insights from our colleagues.

 #LI-REMOTE


 


 

  Already have an account? Log in here