Information Security Analyst III
Our client is seeking an expert-level Information Security Analyst III to serve as a Senior Information Security Advisor. In this senior consulting role, you will be embedded within a dedicated corporate line of business to champion cybersecurity governance, risk management, and regulatory compliance frameworks. Reporting directly to the leadership team, you will drive the execution of Information Security Risk Assessments (ISRAs) for complex technical projects, digital initiatives, applications, and third‑party SaaS vendors.
You will act as a trusted translator between deep technical contexts and plain business language, evaluating attack vectors, reviewing security clauses within legal contracts, and formulating strategic risk‑remediation blueprints to safeguard highly confidential enterprise data.
Duration: 12 months.
Advantages- Tier‑1 Financial Enterprise Scale:
Direct the security risk governance roadmap for high‑visibility digital transformations within a market‑leading financial institution. - Complex Multi‑Cloud Sandbox:
Deepen your professional advisory portfolio evaluating cloud security controls across enterprise AWS, Azure, and third‑party SaaS deployments. - Strategic Autonomy:
Lead cross‑functional collaboration channels that bridge corporate business lines, cloud architects, privacy offices, compliance units, and legal teams. - Long‑Term High‑Impact Engagement:
Secure a stable, foundational 11‑month contract assignment offering deep technical ownership and institutional visibility.
Security Risk Assessment & Advisory
- End‑to‑End Risk Auditing:
Lead and perform comprehensive Information Security Risk Assessments (ISRAs) on new line‑of‑business initiatives, complex applications, and third‑party vendor platforms. - Cloud Security Validation:
Evaluate and assess the architecture of incoming cloud infrastructure (IaaS) and software‑as‑a‑service (SaaS) toolsets, ensuring alignment with corporate security directives and policies. - Control Consultation:
Provide advanced technical guidance to engineering teams to ensure the proper implementation of security controls—such as encryption standards, firewalls, and data loss prevention platforms—to neutralize threat vectors.
Contract Review & Risk Governance
- Legal Security Alignment:
Review legal contracts, vendor service agreements, and statements of work to ensure the inclusion of rigid, standard‑compliant cybersecurity clauses and provisions. - Remediation Management:
Track, manage, and report on open information security deficiencies. Partner with business risk owners to negotiate valid remediation strategies, verify technical target dates, and enforce timely bug closure. - Executive Telemetry Reporting:
Compile high‑fidelity technical reports and risk summaries for senior management, detailing systemic risk landscapes, active policy exception requests, and strategic mitigation options.
- Experience:
Minimum 7+ years of progressive professional experience operating in Information Security, Information Technology (IT), or a related cyber governance field, with a heavy emphasis on Information Security Risk Management. - Technology Domain Depth:
Robust technical understanding of security technologies, including data encryption, network/web application firewalls (WAF), IDS/IPS infrastructure, advanced malware protection, DDoS mitigation, Data Loss Prevention (DLP), and SIEM ecosystems. - Cloud Infrastructure Fluency:
Extensive practical experience executing risk assessments for modern cloud platforms, specifically including Amazon Web Services (AWS) and Microsoft Azure. - Contractual Acuity:
Proven familiarity with contract language and the interpretation or drafting of information security provisions and compliance text. - Education:
Post‑secondary degree or diploma in Computer Engineering, Computer Science, Information Technology, Cybersecurity, Risk Management, or an equivalent technical field. - Soft Skills:
Elite report‑writing and verbal communication skills with a proven ability to translate complex technical jargon into highly readable business terms. Must be a self‑starter, a consensus builder, and a strategic negotiator who can influence win‑win…
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search: