Company Description
Enlightmeds Technology Solutions (ETS) is a minority woman-owned, HUBZone, and CBE certified small business based in Washington, D.C. With over 15 years of combined work experience, ETS provides professional services in Program/Project Management support, Information Technology services, Artificial Intelligence, App/Web Development, Quality auditing, and administrative support to Federal government and Commercial industry clients. ETS is committed to delivering innovative solutions and exceptional customer service to help clients achieve their goals.
Role Description:
This is a part-time onsite role for a Human Risk Analyst in Washington, D.C. The Human Risk Analyst will be directed to identify, assess, and mitigate risks associated with staff and customer behavior. This role focuses on developing strategies to enhance security awareness, ensure policy compliance, and reduce human-related risks, such as but not limited to phishing attempts and security.
Qualifications:
- Analytical Skills and Risk Analysis expertise
- Financial knowledge
- Strong Communication skills
- Understanding of Statistics
- Critical thinking and problem-solving abilities
- Attention to detail and accuracy
- Experience in project management or risk assessment
- Bachelor's degree in finance, Business, Economics, Statistics, or related field
Security Awareness and Training:
• Knowledge of designing, implementing, and evaluating security awareness programs.
• Familiarity with tools and platforms for delivering security training (e.g., KnowBe4).
Social Engineering:
• Understanding of social engineering techniques and attack vectors (e.g., phishing, pretexting, baiting).
• Ability to design and conduct social engineering assessments and simulations.
Risk Assessment:
• Knowledge of risk assessment methodologies and frameworks (e.g., NIST, SOC 2).
• Experience in conducting risk assessments focused on human factors and behavior.
Behavioral Analytics:
• Understanding of behavioral analytics and the ability to analyze user behavior to identify anomalies.
• Familiarity with tools and techniques for monitoring and analyzing user activity.
Experience and Non-Technical Skills:
• Three years of experience in cybersecurity, risk management, or related fields.
• Hands-on experience in managing human-related security risks and developing security awareness programs.
• Experience leading or participating in projects focused on reducing human-related risks.
• Demonstrated excellent written and verbal communication skills
• Demonstrated ability to create and deliver engaging training materials and presentations.
Demonstrated strong interpersonal skills to effectively communicate with employees at all levels.
• Understanding of psychological principles related to human behavior and decision-making.
• Knowledge of techniques to influence and change behavior.
• Knowledge of data privacy regulations and compliance requirements.
• Experience in ensuring compliance with legal and regulatory requirements related to human risk.
• Demonstrated record of successfully implementing security awareness and training initiatives.