SENIOR CYBERSECURITY ANALYST - GRC

Job Description Summary

The Senior Cybersecurity Analyst is responsible for implementing and maintaining the organization’s cybersecurity framework, utilizing their working knowledge in many of the relevant technologies and processes to protect sensitive data and guard against any malicious disruption of business continuity at JHAH.

Minimum Education Required

Bachelor's Degree in the field of Information Technology or in a relevant field

Professional Certifications Required

Sample of preferred certifications: .-Certified Information Systems Security Professional (CISSP) .-CompTIA Security+ .-Certified Information Security Manager (CISM) .-GSEC: GIAC Security Essentials Certification .-Project Management Professional (PMP) .-IT Infrastructure Library (ITIL)

Years of Experience

Minimum 6 years of experience in relevant field.

Operational Roles & Responsibilities

• Implement configure maintain support and monitor the organizations IT cybersecurity infrastructure including firewalls antivirus encryption protocols intrusion detection systems access management systems network monitoring solutions security operations center systems and other cybersecurity resources to ensure they are reliable stable scalable secure and perform optimally.
• Manage the organizations cybersecurity governance risk management and compliance programs and enforce adherence to established controls policies procedures standards regulations frameworks and incident response plans through regular assessments drills and training and awareness campaigns.
• Detect and respond to cybersecurity incidents intrusions breaches threats and vulnerabilities in compliance with relevant policies and procedures.
• Ensure that cybersecurity infrastructure complies with relevant best practices regulatory requirements enterprise architecture standards governance programs and cybersecurity policies.
• Manage engagements with contracted vendors for cybersecurity support managed services or professional services to ensure that service delivery meets the targeted scope time cost and quality constraints.
• Fulfill cybersecurity related service requests in compliance with the organizations relevant policies and procedures.
• Evaluate and process the cybersecurity aspects of IT demand requests and support fulfillment of those that are approved in compliance with relevant policies and procedures and by following the organizations IT project management framework.