Associate Cybersecurity Compliance Analyst

Since 1982, Renaissance Systems, Inc. (RSI) has implemented complex IT projects that enable work from anywhere, from anyplace, and on any device over a secure Internet connection. We are seeking to hire a part‑time Cyber Compliance Analyst. We take pride in our incredible employees, who strive to provide an exceptional customer experience.

RSI is seeking an Associate Cybersecurity Compliance Analyst. This is an entry level position and the ideal candidate will be a long‑term part of the RSI family. As a Compliance Analyst, you will support the CISO department in the assessment, development, and management of client security programs. You will gain exposure to the key principles governing risk, compliance, and organizational policy development.

Associate Cybersecurity Compliance Analysts play a pivotal role in assessing and prioritizing information security and cybersecurity risk across client organizations. Entry‑level analysts are responsible for participating in and contributing to a variety of initiatives and projects while gaining hands‑on knowledge of the subject matter(s) covered.

• Document client technology and information system components.
• Document processes for client security monitoring, vulnerability management, and incident management needs.
• Define and analyze client security policies and procedures.
• Provide risk‑based recommendations on client governance requirements such as configuration and change management, risk management, and compliance.
• Assist in development remediation plans for security risks and vulnerabilities.
• Conduct client assessment interviews and document findings.
• Assist the department as needed in conducting vendor risk assessments against organizational requirements.
• Conduct research, as needed, to aid assessment or risk mitigation activities.
• Assist the department in completing the tasks assigned to them, which often includes, but is not limited to, project work and day‑to‑day operations.
• Update information systems, perform data collection and verification, and follow‑up on outstanding items in a timely manner.
• Participate as needed in the development, planning, or execution of assigned projects or programs.

• Desire to learn, train, and grow to advance.
• Business‑appropriate oral and written communication skills and experience interacting with individuals at all levels, including supervisors and managers.
• Strong planning processes and organizational skills, including attention to detail and multi‑tasking skills.
• Ability to represent the company in a professional manner.
• Familiarity with risk management methodology, particularly IT and Vendor.
• Competence in governance, policy, and technical writing.

• NIST (CSF, 800‑171, 800‑53)
• PCI‑DSS
• 23 NYCRR Part 500
• HIPAA

• Cloud computing
• Identity and access management principles
• Penetration testing and vulnerability testing
• Firewalls, IDS/IPS, network access control, and network segmentation
• Router, switch, and VLAN security
• Wireless and application security
• Encryption technologies
• MS Outlook, MS Word, MS PowerPoint, MS Excel
• Productivity tools such as Planner, Trello, Asana, etc.

• Highly motivated self‑starter who takes initiative.
• Strong analytical, critical thinking, and problem‑solving skills.
• Effective communication and teamwork skills.
• Strong organizational abilities, including meeting deadlines and adapting to shifting priorities.
• Ability to work independently with minimal guidance.
• Affinity for technical writing and presentation.
• Ability to read and interpret technical documentation.
• Professionalism, punctuality, and a strong work ethic.
• Active participation in continuous improvement initiatives.

• High School Diploma or General Education…