Director, Security Risk Management
Woodbury (Long Island), United States
R
USD 151K-167K Executive-level Full Time
Tasks
- Assess PCI compliance AOCs
- Conduct continuous program improvements
- Define cybersecurity risk metrics and reporting
- Develop risk scoring methodologies
- Drive automation and analytics for risk trend analysis
- Embed security requirements into vendor contracts
- Ensure GRC data quality and evidence integrity
- Evaluate vendor controls using SOC 2 reports
- Integrate risk assessments into enterprise risk management
- Lead information security risk management program
- Manage vendor risk metrics dashboards and KRIs
- Oversee vendor security assessment program
- Perform security risk assessments
- Review ISO 27001 certifications
- Review penetration test results
- Track vendor security issues and remediation
Perks/Benefits
- N/A
Skills/Tech-stack
Analytics | Automation | CIS Controls | Control Evaluation | Control matrix | Cyber Risk | Cyber Risk Institute | Cyber Risk Institute Profile | Cybersecurity Framework | Enterprise Risk | Enterprise Risk Management | Evidence management | GRC | ISO 27001 | Information security | KRIs | NIST Cybersecurity | NIST Cybersecurity Framework | PCI DSS | Penetration Testing | Risk Assessment | Risk Management | Risk and Control | Risk and Control Matrix | Risk scoring | SOC 2 | Security Dashboards | Security Management | Security Risk | Security risk assessment | Third Party | Third-Party Risk | Third-party risk management | Vendor Security Management | Vendor security
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Director, Product Security USD 224K-280KCI/CD | DAST | Development Lifecycle | FedRAMP | ISO 27001401k plan | Equity | Flex fund stipend | Health coverage | Pension planExecutive-level Full TimeRemote, East Coast USA R16h ago
-
Staff Technical Program Manager - Federal AuthOps USD 119K-170KAutomation | Continuous Monitoring | Evidence collection | Governance | PrioritizationEducation reimbursement | Health plans | Hybrid work option | Parental leave options | Remote work optionSenior-level Full TimeRemote - USA R16h ago
-
Principal Security Engineer - GRC USD 130K-201KAWS | Architecture Review | Cloud Security | Compliance Frameworks | Enterprise SecurityEmployee stock purchase plan | Equity grants | Health benefits | Paid time off | Parental leaveSenior-level Full TimeUnited States R17h ago
-
Security Engineer (Security Operations, Zero Trust) USD 115K-148KAWS | Application Firewall | Auth0 | Bash | Best practices100% remote USA | 401k match | Dental insurance | Flexible vacation | Health insuranceMid-level Full TimeUnited States R1d ago
-
FCC - Lead Cybersecurity Engineer USD 135K-170KAutomation | Cloud Security | Cybersecurity | Detection engineering | Endpoint SecurityRemote workSenior-level Full TimeUnited States - Remote R1d ago
-
FCC - Security Architect USD 140K-185KArchitecture Documentation | Cloud Security | Cybersecurity | Defense in Depth | EDRPublic trust clearance required | Remote workSenior-level Full TimeUnited States - Remote R1d ago
-
FCC - SCRM/Emerging Technology Security Analyst USD 115K-161KAudit Support | Cybersecurity | FISMA | NIST CSF | NIST RMFPublic Trust Clearance | Remote workSenior-level Full TimeUnited States - Remote R1d ago
-
FCC - Security Compliance / RMF Analyst USD 100K-136K800-37 | 800-53 | Archer | Continuous Monitoring | Control AssessmentPublic Trust Clearance | Remote workMid-level Full TimeUnited States - Remote R1d ago
-
FCC - ISSO Lead USD 117K-155K800-53 | Compliance Monitoring | Configuration Management | Continuous Monitoring | Control AssessmentPublic Trust Clearance | Remote workSenior-level Full TimeUnited States - Remote R1d ago
-
FCC - SOC/NOC Operations Manager USD 90K-115KAutomation | Cause analysis | Cybersecurity | EDR | FISMAPublic trust clearance support | Remote workMid-level Full TimeUnited States - Remote R1d ago
-
Senior-level Full TimeMountain America Center - Hybrid (0152), … R1d ago
-
Cisco | Cybersecurity | Information security | Program Management | Requirements AnalysisProfessional training resources | Remote work | Travel as needed | Volunteer opportunities | Work-life balanceSenior-level Full TimeKansas, United States R1d ago
-
Access Management | Artificial Intelligence | CIS Controls | Cloud Security | Continuous Monitoring401k | Dental insurance | Medical insurance | Paid time off | Short Term Incentive ProgramMid-level Full TimeCharlotte, NC, United States R1d ago
-
ACAS | Cisco Networking | Cyber Risk | Cyber Risk Analysis | EMASS401k match | Bereavement leave | Dental insurance | Flexible spending account | Health insuranceMid-level Full TimeVienna, Virginia, United States R1d ago
-
Professional Services Security Consultant (US NorthEast) USD 108K-144KAccess Management | Application Security | Application Security Testing | CIS Benchmark | Cloud Security401k match | Community programs | Company-Paid Holidays | Dental insurance | Disability insuranceMid-level Full TimeUS - Remote - North East R2d ago
-
Staff Security Engineer I USD 167K-200KAI Security | Anthropic Claude | Anthropic Claude API | Claude API | Code reviewHealth and wellness resources | Wellness Fridays | Work-life balanceSenior-level Full TimeRemote - United States R2d ago
-
Information Security Engineer USD 125K-144KAntivirus | Application Firewall | CIS | Chain of Custody | Configuration ManagementLeadership programs | Mentorship programs | Professional growth opportunitiesMid-level Full TimeUnited States R2d ago
-
Information Security GRC Analyst USD 65KAudit Readiness | CIS Controls | CMMC | Compliance | Control EvaluationFully remoteMid-level Full TimeUnited States - Remote R2d ago
-
Information Security Program Manager (Hybrid) USD 100K-125K800-171 | Active Directory | Amazon Web Services | Ansible | Audit Support401k matching | Coaching | Compensatory time for exempt staff | Dental insurance | Disability insuranceMid-level Full TimeMinneapolis, United States R2d ago
-
Senior Manager Information Security Evaluation Program USD 120K-224KAccess Management | Authentication | Blockchain | Cryptography | Directory ServicesHybrid/on-site work | No visa sponsorship | Travel up to 10 percentSenior-level Full Time102462-AZ-B Building, Chandler Campus, United States R2d ago
-
Security Engineer II USD 80K-85KAutomotive Cybersecurity | CSA | CSMS | Common Criteria | CybersecurityKnowledge sharing | Training and professional development | Travel as neededMid-level Full TimeRemote, Remote, US R2d ago
-
Engineer III - Information Security USD 121K-151KAnti-virus | Application Architecture | COBIT | Cause analysis | Cloud SecurityAdoption Assistance | Backup dependent care | Behavioral health solutions | Employee resource groups | Infertility coverageSenior-level Full TimeUSA - TX - Remote, United … R2d ago
-
Sr. Splunk Engineer | Remote, USA USD 92K-126KAWS | Application scripting | Cribl | DLP | Data ClassificationProfessional training resources | Remote work allowance | Volunteer opportunities | Work-life balanceSenior-level Full TimeOverland Park, KS, United States R2d ago
-
Automation | Contrast | Device logs | Information security | Network TrafficProfessional training resources | Remote work | Volunteer opportunities | Work-life balanceSenior-level Full TimeKansas, United States R2d ago
-
Senior Security Architect USD 181K-217KAccess Management | Access Security | Data Protection | Device Management | Endpoint Security401k match | Employee assistance program | Flexible vacation | Hybrid work | Paid HolidaysSenior-level Full TimeDenver, CO; New York City, NY; … R4d ago