Information Technology Strategic Risk Analyst
CurrentDevelop, manage, and mature the County IT Risk Management Program based on the NIST Risk Management Framework. Conduct IT risk assessments for projects, solutions, and business processes. Review contracts and agreements from an IT risk perspective. Track risk mitigation efforts within Hennepin County IT. Create metrics and reporting related to risk management, standards and policy, and compliance. Assist in the drafting, publishing, and maintenance of IT technical and security policies and standards. Work with internal and external partners to ensure IT security standards are maintained, clear, and aligned with business goals, compliance regulations, and legislation. Manage content and tools for Cyber Security Awareness for all county users.