Director, Security Risk Management
Woodbury (Long Island), United States
R
USD 151K-167K Executive-level Full Time
Tasks
- Assess PCI compliance AOCs
- Conduct continuous program improvements
- Define cybersecurity risk metrics and reporting
- Develop risk scoring methodologies
- Drive automation and analytics for risk trend analysis
- Embed security requirements into vendor contracts
- Ensure GRC data quality and evidence integrity
- Evaluate vendor controls using SOC 2 reports
- Integrate risk assessments into enterprise risk management
- Lead information security risk management program
- Manage vendor risk metrics dashboards and KRIs
- Oversee vendor security assessment program
- Perform security risk assessments
- Review ISO 27001 certifications
- Review penetration test results
- Track vendor security issues and remediation
Perks/Benefits
- N/A
Skills/Tech-stack
Analytics | Automation | CIS Controls | Control Evaluation | Control matrix | Cyber Risk | Cyber Risk Institute | Cyber Risk Institute Profile | Cybersecurity Framework | Enterprise Risk | Enterprise Risk Management | Evidence management | GRC | ISO 27001 | Information security | KRIs | NIST Cybersecurity | NIST Cybersecurity Framework | PCI DSS | Penetration Testing | Risk Assessment | Risk Management | Risk and Control | Risk and Control Matrix | Risk scoring | SOC 2 | Security Dashboards | Security Management | Security Risk | Security risk assessment | Third Party | Third-Party Risk | Third-party risk management | Vendor Security Management | Vendor security
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Senior GRC Analyst USD 150K-185KAudit Coordination | Awareness Training | Business Continuity | Business Continuity Planning | Continuity planning401k | Equal compensation | Equity | Fertility and adoption benefits | Health insuranceSenior-level Full TimeRemote - USA R3d ago
-
API Security | Access Management | Business Continuity | CISSP | Cloud SecuritySenior-level Full TimeUnited States R4d ago
-
Business Continuity | Business Continuity Planning | CIS | Cloud Computing | Continuity planningAdoption expense reimbursement | Community service time off | Employee resource groups | Fertility treatment support | Flexible family care daysSenior-level Full TimeMarshall, MI, United States R4d ago
-
Senior Director, Cybersecurity Architecture USD 132K-174KAWS | Access Management | Application Security | Automation | Cloud SecuritySenior-level Full TimeCleveland, OH, United States R4d ago
-
Security Analyst, Information Security USD 135K-200KApplication Firewall | Artificial Intelligence | Audit management | Change Management | Data reportingOn-call support | Remote workMid-level Full TimeRemote, United States R4d ago
-
Security Engineer USD 80K-128K800-53 | AES 256 | Application Allowlisting | Application Firewall | CI/CDOccasional onsite travel | Remote workMid-level Full TimeHome, OR, United States R4d ago
-
Senior Security Compliance Analyst USD 126K-190KAWS | Authentication | Authorization | Automation | AzureHybrid work | In-person collaboration | Remote work flexibilitySenior-level Full TimeUS - Austin - Hybrid, United … R4d ago
-
Security Engineer USD 89K-142KAccess Control | Access Management | Automation | CrowdStrike | Data Loss Prevention401k match | Health benefits | Hybrid work flexibility | Paid time off | Wellness programsMid-level Full TimeRemote Flex - North Carolina, United … R4d ago
-
Information Security Analyst (Hybrid) USD 73K-98KAudit evidence | Audit evidence management | Audit management | Compliance | Document ManagementHybrid workMid-level Full Time1 First American Way, Santa Ana, … R4d ago
-
MTS Manager USD 190K-215KBinary Analysis | Binary Ninja | CNA Workflow | CVE management | CVSSContinuous learning | Mentorship | Psychological safety | Remote-first cultureMid-level Full TimeUnited States or Canada R4d ago
-
Information Security Engineer USD 100K-150K800-171 | AWS | Active Directory | Azure | Disaster RecoveryEmployee ownership | Professional growth opportunities | Remote eligible | Workplace flexibilityMid-level Full TimeEnglewood, CO; Greater Boston, MA; Los … R4d ago
-
Agile | Budget tracking | Capital planning | Cross-Functional Collaboration | Cross-functional401k | Hybrid work model | Long-term incentive program | Medical/Dental/Vision insurance | Paid time offSenior-level Full TimeNorth Chicago, IL, United States R5d ago
-
Cybersecurity strategy | Data analytics | Executive Communication | ISO 27001 | Information security401k | Long Term Incentive Program Eligible | Medical/Dental/Vision insurance | Paid time offSenior-level Full TimeMettawa, IL, United States R5d ago
-
Senior Specialist, Compliance USD 90K-110KAccess Management | Access reviews | Audit documentation | Automation | Cause analysisSenior-level Full TimeRemote, United States R5d ago
-
Director of Pricing Strategy and Transformation USD 135K-330KAnalytics | Book management | Budgeting | Change Management | Competitive IntelligenceCommunity involvement support | Family-friendly benefits | Flexible work hours | Medical, dental & vision coverage | Paid parental leaveExecutive-level Full TimeRemote United States, United States R5d ago
-
Director of Product Certifications and Compliance USD 135K-330KBudgeting | Compliance | Cross-functional | Cross-functional leadership | CybersecurityFamily-friendly benefits | Flexible work hours | Medical, dental, and vision coverage | Paid parental leave | Paid time offExecutive-level Full TimeRemote United States, United States R5d ago
-
AWS | Acunetix | Application Security | Azure | BashExecutive-level Full TimeNew Jersey Office - 210 Hudson … R5d ago
-
Senior Product Security Engineer USD 149K-207KAI Security | Application penetration testing | Auditability | Bias awareness | CIS BenchmarksSenior-level Full TimeRemote - PA, United States R5d ago
-
Information Systems Security Officer (ISSO) USD 75K-158K800-53 | ATO/authorization | Continuous Monitoring | DOD RMF | EMASSFlexible time off | Learning resourcesMid-level Full Time999 REMOTE, United States R5d ago
-
Enterprise Information Security Engineer/ Architect USD 110K-140KAWS | Cloud Security | CrowdStrike | DLP | DarktraceCommuter benefits | Dental insurance | Employee assistance program | Employee life insurance | Employer-funded pension planSenior-level Full TimeNew York, New York, United States R5d ago
-
R&D Software Security Officer USD 143K-240KAWS | Access Control | Agile | Business Continuity | C#Bonus eligibility | Full-time schedule | Remote work option | Stock eligibilitySenior-level Full TimeUS-DE-Remote Location-Wilmington/Newport Area, United States R5d ago
-
Sr. Splunk Engineer | Remote, USA USD 92K-126KAWS | Cribl | DLP | Endpoint Security | Enterprise ArchitectureProfessional training resources | Remote work flexibility | Volunteer opportunities | Work-life balanceSenior-level Full TimeOverland Park, KS, United States R5d ago
-
Senior Cyber Security Analyst (Remote within WA, ID, OR) USD 117K-154KAccess Controls | Access Management | Active Directory | Automation | Azure401k match | Dental insurance | Life insurance | Long-term disability | Medical insuranceSenior-level Full TimeWashington R5d ago
-
Principal Consultant, Security Governance USD 136K-170K800-171 | 800-53 | AWS | Board Presentations | CMMCProfessional development | Remote work | Travel 30 percentSenior-level Full TimeRemote, United States R5d ago
-
Access Control | Application Security | Awareness Training | Cybersecurity | Disaster RecoveryEmployee assistance program | Paid time off | Rewards and recognition programsEntry-level Full TimeClearfield, PA, US R6d ago