Sr Security Risk Analyst

At Mr. Cooper Group, You Make the Dream Possible.

Our purpose is simple: Keeping the dream of homeownership alive. As a Mr. Cooper Group team member, you play a big role in making that dream possible. Around here, we know our roles and work together, volunteer to make a difference, and challenge the status quo when needed. Everything we do is in the care and service of our teammates and our customers.

Join us and make the dream of home ownership possible!

We're seeking an experienced Sr Security Risk Analyst to be a part of our Information Security organization. This position offers a chance to directly enhance our Security Risk Management Program which focuses on IT, Security, and Third-party Security risks.

The Analyst will participate in security risk assessments (internal, external, and third-party) and will play a key role in ensuring security framework maturity, identifying and measuring risks, and contributing to the overall security risk management strategy. The ideal candidate will possess strategic thinking and strong collaboration skills, experience performing security risk assessments, and working knowledge in cyber risk management frameworks and security best practices.

Responsibilities:  

• Assist performing comprehensive security risk assessments, including third-party vendors.
• Lead efforts to continually identify IT, security, and third-party security risks and mitigation strategies.
• Collaborate closely with cross-functional teams and lines of business to ensure IT, security, and third-party vendor risks and issues are effectively remediated.
• Maintain risk registers, metrics reports, and other security risk management documentation.
• Identify, track, and report on security-related KRIs (Key Risk Indicators), providing actionable insights to leadership at all levels.
• Lead efforts to align with stakeholders at all levels to ensure a comprehensive security risk management approach.
• Develop and maintain comprehensive security risk management procedures, reports, and documentation.
• Support security framework maturity efforts, such has process improvements.
• Lead initiatives that enhance cyber risk reduction across the organization.
• Stay up-to-date on the latest security risks and threats, risk management trends, and industry best practices.

Qualifications:

• At least 7 years of experience in IT and security risk management.
• At least 5 years of experience conducting security risk assessments.
• At least 3 years of experience communicating and presenting to senior-level management.
• Experience with third-party vendor security assessment methodologies and understanding third party risk assessment processes.
• Experience developing and reporting on KRIs (Key Risk Indicators).
• Knowledge of industry-standard security frameworks, such as NIST CSF, NIST RMF, ISO, or CIS.
• Relevant certifications (e.g., CRISC, CISM, CISSP) are highly desirable.
• Experience with risk management platforms and tools.
• Excellent communication, analytical, critical thinking, and interpersonal skills.
• Ability to work independently and as part of a team.

Mr. Cooper Group is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or status as a protected veteran. EOE/M/F/D/V

Job Requisition ID:

023607

Job Category:

Information Technology

Primary Location City:

Dallas

Primary Location Region:

Texas

Primary Location Postal Code:

75019

Primary Location Country:

United States of America

Additional Posting Location(s):