Information Security Analyst
Current• Manage compliance efforts ensuring adherence to relevant standards such as TPRM, ISO 27001, NIST, PCI-DSS, HIPAA, etc.• Collaborate cross-functionally with IT, legal, and business stakeholders to address GRC requirements and implement security controls.• Monitor and assess security incidents, providing timely response and resolution strategies to minimize impact.• Employ risk assessment process to identify threats, vulnerabilities, and security controls surrounding our information systems. Assess the likelihood of exploits and the potential impact on system operations. Conduct comprehensive assessments of third-party vendors' cybersecurity postures, evaluating their security controls, policies, and procedures.• Working knowledge of NIST SP 800-18, SP 800-30, SP 800-37, SP 800-39, SP 800-53A, SP 800-53 REV 4, SP 800-60, SP 800-65, SP-800-70, SP 800-53B