Cyber security analyst

TekOne IT Services Pvt. Ltd. • St Paul, MO, US • 3m ago

This is Tanmai from Intellect Inc. Please find the job description and reach out to me with an updated copy of your resume. You can send it to tanmai@intellectt.com or call me at +1(907) 802-6640

Role: Sr. Cyber security Analyst

Location: St. Paul, MN - 55117

Duration: 4 Months on W2

Shift Timings: 8:00 AM to 5:00 PM

100% Remote role (Must work in CST time zone)

Job Description

The Sr. Specialist IT Quality resource is a member of the team that evaluates and monitors third party risks. The selected candidate will develop a deep understanding of Abbott's vendor relationships (including completing reviews of material vendor relationships/programs consistent with policy), as well as participate in monitoring, evaluating, and reporting on other risk areas that could potentially impact Abbott.

Responsibilities

Manage vendor risks as per the Technology Vendor Risk Management process.
Use GRC tools for daily tasks.
Audit new vendor approvals to ensure policy compliance and identify risks.
Support Business Division Leaders in risk monitoring and analysis.
Conduct periodic reviews of Third-Party vendors for risk assessment.
Guide business units, development teams, and vendors to meet program requirements.
Apply Quality System Controls knowledge to assess vendor performance.
Reports to Sr. Manager of Vendor Risk Management in Enterprise Security.
Abbott-wide role for governance and risk management with a focus on information security.

Minimum Education/Experience

2-3 years demonstrated experience using Archer GRC tool
2-3 years demonstrated experience completing and managing vendor risk management assessments.

Other Requirements

Strong analytical skills, independent work capability, curiosity about Abbott's business aspects, a willingness to assist others, and effective interpersonal skills.
Preferred experience with Archer Engage or other vendor management software.
Understanding of procurement and risk processes is a plus.
Ability to multitask and meet tight deadlines while resolving issues.
Proficiency in information security and risk control.
In-depth knowledge of information security concepts and best practices.
Collaboration across departments to promote industry best practices and enhance IT security policies.
Expertise in implementing industry standards like ISO 27001/2, SOC, HITRUST, Fed RAMP, and ISO 22301.
Experience with GRC toolsets (Governance Risk and Compliance).
Possession of CISSP/CISM certification or similar, and knowledge of national and international regulatory compliances and frameworks (ISO, SOX, BASEL II, EU DPD, HIPAA, PCI DSS).
Lead Auditor Training for ISO 13485, ISO 9001 (ASQ), or relevant experience in Quality Systems/GXP assessments and audits.