Cyber Security Analyst

Job Description

Implement cyber security controls, ISMS risk assessment and align to Client regulatory requirements, ensuring documented and sustainable compliance that aligns with IRIS business objectives.

• Evaluates risks and develops security standards, procedures, and controls to manage risks. Improves IRIS's security positioning through process improvement, policy, automation, and the continuous evolution of capabilities.
• Conduct internal assessments on a perpetual basis to ensure compliance with customer regulatory and cyber security requirements.
• Documents and reports control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities.
• Implements processes, such as GRC (governance, risk, and compliance), to automate and continuously monitor information security controls, exceptions, risks, and testing. Develops reporting metrics, dashboards, and evidence artifacts.
• Updates security controls and provides support to all stakeholders on security controls covering internal assessments, regulations, protecting Personally Identifying Information (PII) data, HIPAA, and Payment Card Industry Data Security Standards (PCI DSS).
• Remains current on best practices and technological advancements and acts as the Cyber Security single point of contact for the business.
• Applies information security management, governance, and compliance principles, practices, laws, rules, and regulations.
• Familiar with cyber and cloud security standard frameworks, architecture, design, operations, and controls.