Cybersecurity Risk Analyst 1

Maintains and optimizes the tools, dashboards, and data pipelines used for risk intake and triage. Automates routine processes to improve the accuracy, speed, and consistency of risk data handling.

Job Duties and Responsibilities:

Tooling, Dashboarding, and Automation (40%)             

• Owns day-to-day operation of risk data infrastructure—dashboards, intake tools, alert routing, and enrichment scripts. Ensures accuracy and availability.
• Manage daily operations and quality control of CSRM’s risk data intake, infrastructure and intelligence feeds, including dashboards,routing logic, and automation scriptsRun automated validation checks to ensure incoming data are correctly ingested and mapped to the appropriate risk categories.
• Troubleshoot issues with alert routing and enrichment logic.
• Resolve issues with risk data intake infrastructure and intelligence feeds.

Risk Data Intake & Triage (25%)

• Assists with initial filtering, routing, and organization of incoming data (e.g., audit findings, vendor assessments, threat alerts).Perform preliminary risk triage on inbound security findings from audits, SIG responses, threat feeds, and customer assessments, using predefined categorization logic.
• Determine routing rules for risk items based on severity, asset type, data exposure, and regulatory impact.
• Tag and assign records in intake databases to the appropriate analyst, functional lead, or compliance contact.
• Ensure that risk signals are accurately captured, validated for completeness, and integrated into broader risk analysis workflows.

Data Quality & Completeness (15%)

• Performs validation checks, flags anomalies, and ensures consistency across data sets.
• Resolve breakdowns in alert routing or enrichment scripts that could delay detection of critical issues, identifying gaps or errors in intake data, and correcting inconsistencies in dashboard metrics or risk. reports caused by flawed data aggregation.
• Document discrepancies, classify the nature of the problem, and escalate them to senior analysts or relevant stakeholders.
• Support remediation efforts by confirming that updated data meets intake standards through revalidation.

Support Cybersecurity Third-Party Risk Review Operations (10%)

• Supports cybersecurity-focused third-party risk reviews by assisting with the intake, validation, and triage of vendor security risk assessments.
• Helps identify gaps in control implementation, unclear responses, or indicators of elevated risk across third-party relationships.
• Applies predefined criteria to assess vendor impact based on data access, system integration, and regulatory exposure.
• Review vendor security intelligence feeds to identify risks related to cybersecurity controls.
• Evaluate vendors based on access to sensitive data, integration with critical systems, and alignment with frameworks like SOC 2 or NIST.
• Tag submissions for prioritization using risk-based criteria and route high-risk vendors for senior review.

Document Processes (10%)

• Keeps operational documentation current to support continuity and audit readiness.

Qualifications (Education, Experience, Certifications & KSA):

• Bachelor’s degree in Cybersecurity, Information Systems, Risk Management, or related field; or equivalent combination of education and work experience.
• 1-2 years of work-related experience required.
• Preferred certifications include: GIAC Security Essentials (GSEC), Microsoft Certified: Security, Compliance, and Identity Fundamentals (SC-900), or AWS Certified Cloud Practitioner.  

The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, skills, efforts or working conditions associated with a job.

We offer our employees a robust compensation package! Our comprehensive benefits include: medical, dental and vision insurance coverage; 100% company-paid life and disability coverage, 401k options with company match, three weeks PTO by the end of the first year and much more. Allied proudly promotes from within as part of a strong commitment to providing career growth opportunities for employees of all levels. Our diverse business portfolio allows employees broad career options with the advantage of staying with the same organization.

All qualified candidates will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability status, protected veteran status, or any other characteristic protected by law.

To view our privacy statement click here

To view our terms and conditions click here