Risk Management Analyst jobs in Colorado

Company Description

ClientSolv Technologies is an IT solution firm with over a decade of experience serving Fortune 1000 companies, public sector and small to medium sized companies. ClientSolv Technologies is a woman-owned and operated company that is certified as a WMBE, 8a firm by the Federal government's Small Business Administration.

Job Description

We are seeking an IT Security Risk Management Analyst for a 6-month contract to hire opportunity in Englewood, CO.  This role will be based out of the south Denver office and will report to the office a few days per week while the organization is working a hybrid schedule of remote and onsite (this role will require in -person/onsite time each week in the office).  This role will be responsible for: 

• Partnering with Business Units to identify, analyze and mitigate third party security risk associated with outsourced activities and products.
• Provide third party security consultation for new and ongoing third party relationships.
• Consult on defining third party security policies and best practices.
• Educate and build awareness of third party security requirements.
• Improve compliance with security standards and policies across third parties used across the enterprise.
• Participate in testing and monitoring of security and privacy controls executed by third parties interacting with data..
• Lead security enhancement projects focused on new or changing third party relationships.
• Maintain an inventory of third parties who possess and/or interact with data, including key risk information about the relationship, data attributes involved, and regulatory compliance.
• Support completion of ’s information security review process for all new third parties, and annual reviews for all other relationships, that receive and/or interact with data.
• Monitor open third party security issues and remediation actions associated with security control gaps to ensure timely closure.
• Continuously work to improve the overall Third Party Risk Management Program.

Qualifications

• Bachelors Degree and at least 3-5 years of directly related experience. Must have a solid understanding of SOX, PCI, CPNI, CCPA, FACTA and similar IT Compliance and Privacy regulations.
• Experience working in Third Party Risk Management preferred.
• Strong understanding of mitigation methodologies and regulatory requirements pertaining to information security, privacy, and/or data security.
• Solid working knowledge of information security concepts and controls.
• Excellent project management skills, with the ability to work within deadlines, juggle multiple priorities, design project plans, and provide project updates.
• Ability to work independently with little direction and/or supervision
• Superior communication skills with the ability to ask questions, escalate roadblocks early, and interact effectively at multiple levels in the organization.
• Keen attention to detail with the ability to correct on the fly and work independently.
• Analytical aptitude with an emphasis on investigative, methodical critical questioning and logical thinking; a data-driven decision maker.
• Strong understanding of mitigation methodologies and regulatory requirements pertaining to information security, privacy and/or data security.
• High-level interpersonal skills.

Additional Information

This 6-month contract to hire opportunity will be based out of the south Denver office and will report to the office a few days per week while the organization is working a hybrid schedule of remote and onsite (this role will require in -person/onsite time each week in the office).