Cyber Risk Analyst
Atlanta, Georgia, United States; Washington, District of Columbia, United States; Chicago, Illinois, United States
King & Spalding
King & Spalding is an international law firm providing clients a consistent, uncompromising approach to quality from its 24 offices worldwide.- At least 3-5 years of experience in the areas of information security, risk management, compliance, IT audit or similar functions.
- Experience managing client security inquiries including questionnaires, onsite audits, and contractual terms review.
- Experience with ISO 27001/27002.
- Experience with industry leading GRC platforms a plus.
- Experience with managing internal controls, risk assessments, business process and internal IT control testing or operational auditing.
- Experience with client services or professional services firm a plus.
- Problem Solving - Identifies and resolves problems in a timely manner; Gathers and analyzes information skillfully; Develops alternative solutions; Works well in group problem solving situations; Uses reason even when dealing with emotional topics.
- Technical Skills - Assesses own strengths and weaknesses; Pursues training and development opportunities; Strives to continuously build knowledge and skills; Shares expertise with others.
- Customer Service - Responds promptly to customer needs; Responds to e-mail and voice mails as soon as possible and no later than the following business day; Solicits customer feedback to improve service; Responds to requests for service and assistance; Meets commitments.
- Interpersonal - Focuses on solving conflict, not blaming; Maintains confidentiality; Listens to others without interrupting; Keeps emotions under control; Remains open to others' ideas and tries new things.
- Oral Communication - Speaks clearly and persuasively in positive or negative situations; Listens and gets clarification; Responds well to questions; Demonstrates group presentation skills; Participates in meetings. Able to translate and communicate technical security concepts in terms of business risk
- Teamwork - Balances team and individual responsibilities; Exhibits objectivity and openness to others' views; Gives and welcomes feedback; Contributes to building a positive team spirit; Puts success of team above own interests; Able to contribute to morale and group commitments to goals and objectives; Supports everyone's efforts to succeed; Recognizes accomplishments of other team members.
- Written Communication - Writes clearly and informatively; Edits work for spelling and grammar; Varies writing style to meet needs; Presents numerical data effectively; Able to read and interpret written information.
- Other Skills: Expertise in IT Governance, Risk, and Compliance. Expertise in applying reasonable security controls to manage risk while enable business processes.
- BA/BS, or commensurate combination of education and direct experience in Information Technology or related field is required.
- Advanced certification such as CISSP, CISM, CISA, or CCSP preferred.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits CCSP CISA CISM CISSP Compliance Governance ISO 27001 Risk assessment Risk management Security assessment Vulnerabilities Vulnerability management
Perks/benefits: Career development Equity / stock options Flexible spending account Flex vacation Health care Insurance Salary bonus Team events Wellness
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.