isecjobs.com

Information Security Risk Analyst

Rockville,, MD

⚠️ We'll shut down after Aug 1st - try foo🦍 for all jobs in tech ⚠️

Applications have closed
Company logo

ASSYST

Leading digital transformation specialists. Learn about AI program governance, cybersecurity solutions, and Assyst role in government's digital-first initiatives.

View all jobs at ASSYST

Find more jobs like this Jobs in the United States

ASSYST is seeking a qualified Information Security Risk Analyst to support our client’s Governance, Risk, and Compliance (GRC) program. This role involves identifying, assessing, and documenting risks related to information systems, technologies, vendors, and operational processes—ensuring alignment with client security policies and regulatory standards.

Key Responsibilities:

  • Conduct structured risk assessments

  • Review internal controls

  • Evaluate third-party security attestations

  • Support vulnerability and compliance activities

Policy Exception Management:

  • Validate and assess policy exception requests via ServiceNow GRC

  • Conduct risk evaluations and recommend approval or denial

  • Collaborate with cross-functional teams to enhance risk posture

Qualifications:

  • Experience with GRC tools (ServiceNow, RSA Archer, etc.)

  • Knowledge of frameworks: NIST 800-53, ISO 27001, HIPAA, PCI, FedRAMP

  • Strong technical foundation and risk analysis skills

  • Familiarity with FAIR and SOC 1/2 Type II assessments

Preferred Certifications:

  • CISSP, CRISC, GRCP, CISA, CGRC

ASSYST is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, disability, military status, national origin or any other characteristic protected under federal, state, or applicable local law.
Find more jobs like this Jobs in the United States

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  97  3  0
Categories: Analyst Jobs Compliance Jobs

Tags: CGRC CISA CISSP Compliance CRISC FedRAMP Governance HIPAA ISO 27001 NIST NIST 800-53 Risk analysis Risk assessment RSA SOC SOC 1

Region: North America
Country: United States

More jobs like this

« Back to job search To the top ↑

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.

Information System Security Officer jobsSenior Cybersecurity Engineer jobsSystems Engineer jobsSenior Security Analyst jobsSystems Administrator jobsSecurity Operations Engineer jobsSenior Cloud Security Engineer jobsCyber Security Specialist jobsInformation System Security Officer (ISSO) jobsSenior Product Security Engineer jobsSenior Information Security Engineer jobsInformation Security Manager jobsSecurity Consultant jobsSenior Network Security Engineer jobsSecurity Specialist jobsChief Information Security Officer jobsInformation Systems Security Engineer jobsSenior Cyber Security Engineer jobsIT Security Engineer jobsSenior Software Engineer jobsNetwork Engineer jobsCyber Threat Intelligence Analyst jobsSenior IT Auditor jobsCybersecurity Specialist jobsSoftware Engineer jobs
Bash jobsJava jobsEDR jobsEncryption jobsTS/SCI jobsRMF jobsSDLC jobsITIL jobsThreat detection jobsTerraform jobsSplunk jobsIDS jobsTop Secret jobsCompTIA jobsSQL jobsMalware jobsDocker jobsOWASP jobsIPS jobsForensics jobsActive Directory jobsFinance jobsGIAC jobsClearance Required jobsSOC 2 jobs
DoDD 8570 jobsMITRE ATT&CK jobsIntrusion detection jobsOSCP jobsTCP/IP jobsCRISC jobsVPN jobsSOAR jobsHIPAA jobsCCSP jobsJavaScript jobsZero Trust jobsDNS jobsKPIs jobsIT infrastructure jobsIndustrial jobsNIST 800-53 jobsMachine Learning jobsAnsible jobsBanking jobsData Analytics jobsUNIX jobsSOX jobsJira jobsVMware jobs