Title: Senior IS Security Risk Analyst Location: Columbia, SC 29219 - HYBRID Duration: 51+ Weeks Contract role Client: BCBS of SC Pay Rate: $40.00 - $63.00 /hour on W2. Job description: Job Title: Senior IS Security Risk Analyst Position Notes: Required Education: Bachelor’s degree in computer science, Information Technology, or related degree. or 4 years of job-related work experience or 2 years of job-related experience plus an associate’s degree in computer science, Information Technology, or other job-related degree. Required Work Experience: 8 years of I/T experience including 6 years of IT security, risk assessment and/or compliance experience. Successful completion of BCBSSC I/S Entry Level Training Program (ELTP) may be substituted for 2 years of I/T experience. C2 Eligibility is required Team Name: Strategic Security & Compliance Services Work Hours: 8-5 p.m. Partially onsite: Onsite Tuesday, Wednesday, Thursday, but could also be required to come in more for important meetings etc. Highly recommended to be onsite more days during training period. Not required but highly recommended. Required Technologies: Microsoft (M365): Outlook, Teams, Excel, Word, Lists, PowerPoint, SharePoint (Intermediate). Nice to Have: Microsoft: Visio, Planner, Forms, PowerBI, Power Automate). RSA-Archer, Service Now (Intermediate). Duties: • Develop strategies and approaches for business development proposals within a compliance and systems security context. Plan and perform compliance and systems security activities in alignment with contractual role. Communicate and escalate compliance and risk issues to the appropriate customer representative and/or level of management. Act as a change agent to influence I/S and corporate compliance culture in alignment with business constituency. Develop strong systems security customer business relationship. Provide expert level consultation regards contractual system security obligations, frameworks, control requirements. • 20% Oversee remediation of new and outstanding issues, including Information Security Risk Exception process, across multiple business areas and security frameworks. Utilize tools to track and report on compliance posture. • 20% Conduct or lead others in the procedural and operational review of internal IS security compliance standards. Oversee formal risk analysis and self-assessments to determine effectiveness of controls and ensure creation of action plans to remediate identified risks. Identify and champion efficiency improvements related to security, risk, and compliance processes. Engage appropriate Client Management areas to facilitate process improvements through formal IS Methodology. • 20% Lead the development, implementation and documentation of Information Security policies, procedures, processes, and programs to guide IS toward continuous compliance. May conduct or lead others in the analysis and interpretation of security regulations and controls. Proactively provide strategic consulting to IS functional teams with the development, implementation, monitoring, and reporting of control processes, documentation, and compliance routines for moderate to highly complex work efforts. • 20% Serve as an interface with external entities for governance and compliance reviews regarding information security risk. • 10% Conduct or lead others in the investigation, documentation, and resolution of Information Security Incidents. Advises senior management of critical issues that may affect organization. • 10% Research emerging security topics, threats, and capabilities to create/update policy and governance. Engage appropriate leaders to evaluate and mitigate potential exposure. Promote organizational security awareness by developing security training, Security Council bulletins, security policies, standards, and best practices, as well as delivering training to personnel. Required Skills and Abilities: • Complete understanding of systems security business life cycle methodologies. Subject Matter Expert in both government and private risk frameworks and control implementations. • Comprehensive understanding of business system security risk management, information system security and compliance practices. • Demonstrate excellent analytical, problem solving, decision-making skills, interpersonal and ownership skills. • Proven ability to interpret and apply knowledge of regulatory/accreditation requirements. • Ability to lead others in solving problems often spanning multiple environments and business areas. • Ability to effect change and bring security, risk, and compliance knowledge to the organization through the use of positive influence. • Understanding of infrastructure and networking architecture WANs, LANs, Internet, intranets, and communication protocols. Excellent communication skills in presenting results to customer, senior management, and matrix staff both verbally and in writing. • Demonstrated ability to develop metrics, perform critical analysis, and develop executive decision support content. • Possess excellent collaboration skills with a wide variety of internal matrix and management staff. Required Software and Tools: Standard office equipment. Preferred Licenses and Certificates: ISC2 Certified Information Systems Security Professional (CISSP). Required Education: Bachelor’s degree in computer science, Information Technology, or related degree. or 4 years of job-related work experience or 2 years of job-related experience plus an associate’s degree in computer science, Information Technology, or other job-related degree. Required Work Experience: 8 years of I/T experience including 6 years of IT security, risk assessment and/or compliance experience. Successful completion of BCBSSC I/S Entry Level Training Program (ELTP) may be substituted for 2 years of I/T experience. Pay Rate & Benefits: • This is the pay range that Magnit reasonably expects to pay someone for this position is $40/hour - $63/hour on W2. • Benefits: Medical, Dental, Vision, 401K (provided minimum eligibility hours are met). QUALIFICATION/ LICENSURE : • Work Authorization : US Citizen • Preferred years of experience : 1+ Years • Travel Required : No travel required • Shift timings: Not specified