IT Risk Management Analyst in Melville, NY at APEX Systems

Date Posted: 3/6/2018

Job Snapshot

Job Description

Job #:  819936



SALARY: MIN $66,220.05 - MAX $108,179.96 

• Perform application security reviews, vendor/business associate assessments, threat modeling and vulnerability analysis based on the NIST/HITRUST framework 
• Oversee corrective action plan development, establish remediation priorities, and track status 
• Provide information security subject matter expertise to developers, engineers, and workforce members on information security risk assessments, vulnerability remediation and threat detection techniques 
• Maintain Information Security policies, standards and guidelines 
• Develop and maintain security awareness and training materials to reinforce required security controls and address gaps noted in assessments 
• Write technical reports based on security review findings and recommendations 

• Bachelor’s Degree in Information Security or Audit or related field, required 
Minimum of five (5) years progressively responsible information security assessment or audit experience, required 
• Thorough knowledge and understanding of current information risk assessment techniques, required 
• Working knowledge of IT standards, federal and state compliance regulations, and security frameworks including HIPAA, HITRUST, NIST, ISO27001, and PCI-DSS, required 
• In-depth technical knowledge of Information Security principles and processes and experience writing/maintaining information security policies, standards and guidelines, required 
• Attention to detail, excellent writing, documentation, communication, presentation, customer service and interpersonal skills, and the ability to work with all levels of management, required 
• Healthcare environment, preferred 
• Certified in at least one of the following: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Security+ 
• Global Information Assurance Certification (GIAC) or related certification, preferred