Information Systems Risk Analyst

At Children’s Wisconsin, we believe kids deserve the best.

Children’s Wisconsin is a nationally recognized health system dedicated solely to the health and well-being of children. We provide primary care, specialty care, urgent care, emergency care, community health services, foster and adoption services, child and family counseling, child advocacy services and family resource centers. Our reputation draws patients and families from around the country.

We offer a wide variety of rewarding career opportunities and are seeking individuals dedicated to helping us achieve our vision of the healthiest kids in the country. If you want to work for an organization that makes a difference for children and families, and encourages you to be at your best every day, please apply today.

Please follow this link for a closer look at what it’s like to work at Children’s Wisconsin: https://www.instagram.com/lifeatcw/

Children's Wisconsin has an opportunity for an Information Systems Risk Analyst within our IS team!
Location- This role is 100% Remote but would prefer associate to be within driving distance to Milwaukee for occasional meetings

What you will do:

The Risk Analyst works as part of a team to assess cybersecurity and technology risk against established frameworks, standards, policies, and methodologies. Reviews and recommends controls and best practices, and continually evaluates risk exposure and tolerance as defined by business leaders and external entities. The role also reviews and documents deficiencies, advocates for change, and when appropriate, escalates issues to senior risk leadership. Report continuously on the state of risk, providing visibility and helping business leaders and risk managers understand where risk resides and where improvements and remediations must be made to protect the business. Such reporting includes adherence to regulations and industry guidelines, as well as corporate risk acceptance. Focuses on third-party risk, as well as risks within internal and business-controlled areas of security, technology, and business processes. Partner with IS peers, audit, compliance, governance, and legal as needed.

What you will need:

• Bachelor's degree (or equivalent knowledge) in computer science, information assurance, data analytics, or related technical field 

• CRISC, CISSP, CISA, CGEIT, GCCC, GSEC and GISP preferable, but not required.

• Requires 3 years of experience in technology and security administration, security risk management or conducting risk assessments that protect the business and adhere with compliance and privacy laws. 

• Hands on experience in security principles and risk management

• Experience working with diverse teams and promoting enterprise-wide risk management rigor and security-first culture. 

• Exhibits guiding behaviors that reflect Children's values and support our mission and vision. 

• Strong written and verbal business and cybersecurity communication skills 

• Knowledge of multiple computing platforms including Windows, OSX, Linux, Unix, cloud-based networks, and endpoints. 

• Ability to effectively communicate privacy, business risk and remediation requirements from assessments. 

• Demonstrated understanding and comprehension of a wide range of technology and compliance requirements (GLBA, PCI, HIPAA, SOX, etc.). 

• General business administration competencies. 

• Strong project management, multitasking, and organizational skills.     

• Administration and/or technical experience in configuring, implementing, and maintaining network and host configurations, application security, cloud services, third-party risk management and role-based access

• Familiarity with state, federal, and international privacy laws.  Understanding of vulnerability and configuration management, and familiarity with a variety of technologies and applications.

Children's Wisconsin is an equal opportunity / affirmative action employer. We are committed to creating a diverse and inclusive environment for all employees. We treat everyone with dignity, respect, and fairness. We do not discriminate against any person on the basis of race, color, religion, sex, gender, gender identity and/or expression, sexual orientation, national origin, age, disability, veteran status, or any other status or condition protected by the law.

Certifications/Licenses: