Synergyassure Inc
Cybersecurity Senior Risk Analyst
β - Featured Role | Apply direct with Data Freelance Hub
This role is for a Cybersecurity Senior Risk Analyst, offering a contract of unspecified length, with a pay rate of "unknown." It requires four years of experience in risk management or cybersecurity, strong analytical skills, and familiarity with cybersecurity frameworks.
π - Country
United States
π± - Currency
$ USD
-
π° - Day rate
Unknown
-
ποΈ - Date
December 16, 2025
π - Duration
Unknown
-
ποΈ - Location
On-site
-
π - Contract
Unknown
-
π - Security
Unknown
-
π - Location detailed
New York, United States
-
π§ - Skills detailed
#PCI (Payment Card Industry) #Cybersecurity #Databases #Monitoring #Compliance #Documentation #Computer Science #Project Management #Security
Role description
Cybersecurity Senior Risk Analyst
Job Description
Justification:
The Senior Risk Analysts will be responsible for implementing tools and
practices to enhance processes related to third-party risk management,
risk assessment, and general cyber risk governance. The position
requires a diverse background in governance, risk, and compliance.
analysis; technology implementation; project management; and
collaboration with diverse groups of stakeholders to strengthen the
overall security posture of the Agency.
The Senior Risk Analysts will be expected to continue building an
effective, organization-wide cybersecurity risk program. These analysts
will be responsible for improving the risk assessment process to make it
more user-centric, interviewing and communicating with internal
departments when performing risk assessments, and driving the creation
of a third-party vendor register and monitoring process. Analysts will
review and analyze technologies for inventorying third parties,
collaborate with subject matter experts to collect third-party intelligence
and define actions based on it, and design steps for reviewing existing
third parties within the vendor portfolio.
Assignment Number and Title:
Cybersecurity Senior Risk Analyst
Work Location:
β On Site
Scheduled Work Hours:
Normal business hours, Monday through Friday, 35 hours per week (not
including mandatory unpaid meal breaks after 6 hours of work)
Scope of Services
Tasks:
β Build new risk processes and implement risk frameworks to enable
improved monitoring and evaluation of cybersecurity risks across
the Agency;
β Manage complex, cross-functional projects while navigating
ambiguity and implementation challenges.
β Collaborate with stakeholders across various divisions,
incorporating feedback and aligning on risk management
objectives.
β Evaluate cybersecurity risks associated with third parties engaged
by the Agency.
β Document, monitor, and track risk remediation efforts within the
Risk Register.
β Review and analyze cybersecurity risk cases, justifications, and
exception documentation submitted by internal departments.
β Assist in the development of cybersecurity risk assessment
procedures and testing methodologies based on recognized
frameworks and guidelines.
β Initiate corrective actions to remediate identified vulnerabilities or
control weaknesses.
β Engage in ongoing communication with internal Agency
stakeholders.
β Support special projects and initiatives as assigned.
Mandatory Skills / Experience
Note: Candidates who do not meet the mandatory requirements will
not be considered.
β A minimum of four (4) years of experience in risk management or
cybersecurity risk assessment, or
β A minimum of four (4) years of experience evaluating and
managing third-party risk within a cybersecurity or information
security team.
Desirable Skills / Experience
β Bachelorβs degree (BS/BA) in Cybersecurity, Risk Management,
Information Systems, Computer Science, or a related field.
Preferred Certifications (one or more):
β Certified Information Systems Auditor (CISA)
β Certified Information Systems Security Professional (CISSP)
β Certified in Risk and Information Systems Control (CRISC)
β Certified Information Security Manager (CISM)
β CompTIA Security+
β CompTIA Network+
β CompTIA A+
β CompTIA CySA+
β Cisco Certified Network Associate (CCNA)
β Certified Ethical Hacker (CEH)
β GIAC Information Security Fundamentals (GISF)
β GIAC Security Essentials (GSEC)
β (ISC)Β² Systems Security Certified Practitioner (SSCP)
Additional competencies:
β Ability to work effectively in a collaborative team environment
β Strong organizational skills with a high level of motivation and
self-direction.
β Knowledge of hardware, software, data, and network principles
applicable to public and/or private sector environments.
β Understanding of operating systems, databases, and network
architectures.
β Familiarity with recognized cybersecurity frameworks such as
NIST, SANS, PCI, ISO 27001/27002, or CIS.
β Strong investigative and analytical capabilities.
β Excellent written and verbal communication skills.
β Awareness of the evolving cyber threat landscape.
β Knowledge of applicable laws, regulations, policies, and ethical
standards related to cybersecurity and information privacy.
Cybersecurity Senior Risk Analyst
Job Description
Justification:
The Senior Risk Analysts will be responsible for implementing tools and
practices to enhance processes related to third-party risk management,
risk assessment, and general cyber risk governance. The position
requires a diverse background in governance, risk, and compliance.
analysis; technology implementation; project management; and
collaboration with diverse groups of stakeholders to strengthen the
overall security posture of the Agency.
The Senior Risk Analysts will be expected to continue building an
effective, organization-wide cybersecurity risk program. These analysts
will be responsible for improving the risk assessment process to make it
more user-centric, interviewing and communicating with internal
departments when performing risk assessments, and driving the creation
of a third-party vendor register and monitoring process. Analysts will
review and analyze technologies for inventorying third parties,
collaborate with subject matter experts to collect third-party intelligence
and define actions based on it, and design steps for reviewing existing
third parties within the vendor portfolio.
Assignment Number and Title:
Cybersecurity Senior Risk Analyst
Work Location:
β On Site
Scheduled Work Hours:
Normal business hours, Monday through Friday, 35 hours per week (not
including mandatory unpaid meal breaks after 6 hours of work)
Scope of Services
Tasks:
β Build new risk processes and implement risk frameworks to enable
improved monitoring and evaluation of cybersecurity risks across
the Agency;
β Manage complex, cross-functional projects while navigating
ambiguity and implementation challenges.
β Collaborate with stakeholders across various divisions,
incorporating feedback and aligning on risk management
objectives.
β Evaluate cybersecurity risks associated with third parties engaged
by the Agency.
β Document, monitor, and track risk remediation efforts within the
Risk Register.
β Review and analyze cybersecurity risk cases, justifications, and
exception documentation submitted by internal departments.
β Assist in the development of cybersecurity risk assessment
procedures and testing methodologies based on recognized
frameworks and guidelines.
β Initiate corrective actions to remediate identified vulnerabilities or
control weaknesses.
β Engage in ongoing communication with internal Agency
stakeholders.
β Support special projects and initiatives as assigned.
Mandatory Skills / Experience
Note: Candidates who do not meet the mandatory requirements will
not be considered.
β A minimum of four (4) years of experience in risk management or
cybersecurity risk assessment, or
β A minimum of four (4) years of experience evaluating and
managing third-party risk within a cybersecurity or information
security team.
Desirable Skills / Experience
β Bachelorβs degree (BS/BA) in Cybersecurity, Risk Management,
Information Systems, Computer Science, or a related field.
Preferred Certifications (one or more):
β Certified Information Systems Auditor (CISA)
β Certified Information Systems Security Professional (CISSP)
β Certified in Risk and Information Systems Control (CRISC)
β Certified Information Security Manager (CISM)
β CompTIA Security+
β CompTIA Network+
β CompTIA A+
β CompTIA CySA+
β Cisco Certified Network Associate (CCNA)
β Certified Ethical Hacker (CEH)
β GIAC Information Security Fundamentals (GISF)
β GIAC Security Essentials (GSEC)
β (ISC)Β² Systems Security Certified Practitioner (SSCP)
Additional competencies:
β Ability to work effectively in a collaborative team environment
β Strong organizational skills with a high level of motivation and
self-direction.
β Knowledge of hardware, software, data, and network principles
applicable to public and/or private sector environments.
β Understanding of operating systems, databases, and network
architectures.
β Familiarity with recognized cybersecurity frameworks such as
NIST, SANS, PCI, ISO 27001/27002, or CIS.
β Strong investigative and analytical capabilities.
β Excellent written and verbal communication skills.
β Awareness of the evolving cyber threat landscape.
β Knowledge of applicable laws, regulations, policies, and ethical
standards related to cybersecurity and information privacy.
