Risk & Advisory Senior Security Analyst in San Francisco at CBIZ

Date Posted: 2/10/2020

Job Snapshot

Job Description

With over 100 offices and nearly 5,000 associates in major metropolitan areas and suburban cities throughout the U.S. CBIZ (NYSE: CBZ) delivers top-level financial and employee business services to organizations of all sizes, as well as individual clients, by providing national-caliber expertise combined with highly personalized service delivered at the local level. CBIZ has been honored to be the recipient of several national recognitions: 2019 America's Best Mid-Size Employers by Forbes, 2019 Best Workplaces in Consulting & Professional Services by Great Place to Work® and FORTUNE, 2019 Workplace Excellence Seal of Approval by the Alliance for Workplace Excellence, and one of the Top 101 highest scoring companies in the country for Best and Brightest Companies to Work For in the Nation by the National Association for Business Resources.

CBIZ Risk & Advisory Services offers leading edge assurance and consulting services to help organizations navigate the perils of controlling a business in turbulent times. As part of CBIZ, the nation's eighth largest financial services provider in the country, CBIZ Risk & Advisory Services provides risk, internal control, internal audit, anti-fraud, and IT audit services to leading businesses across North America.

Our San Francisco, CA office is currently hiring for a Senior Security Analyst.

Essential Functions and Primary Duties:

  • Serve as a senior security analyst to manage teams of security analysts.
  • Leverage vast, detailed expertise in security disciplines and security principles, concepts, policy, and regulations.
  • Identify key concepts, factors, and risks based on conversations and document reviews, and document these in clear and concise narratives or graphical reports.
  • Work in a fast-paced environment with little supervision, maintain high organizational oversight to ensure task completion, and maintain compliance standards with local and federal cybersecurity regulations.
  • Analyze business and user needs, document requirements, and revise existing system logic difficulties, as necessary.
  • Review current security and privacy policies and procedures and write new policies and procedures based on client’s requirements and NIST framework
  • Work with clients to mitigate cyber risk and threats
  • Design/review policies and procedures that support the successful implementation of cyber security programs
  • Guide and advise junior security analysts.

Minimum Qualifications:

  • Critical and analytical thinking skills
  • Experience in delivering technical and governance guidance related to enhancing the security posture of information systems
  • Experience with using analytical techniques to assess system and audit issues and develop risk mitigation recommendations
  • Experience in the roll out of the security governance model, establishing policies, standards and best practices
  • Experience with National Institute of Standards and Technology (NIST) security controls and security Governance, Risk Management, and Compliance (GRC) processes
  • Excellent presentation, verbal and written communication skills; comfortable with leading discussions and/or training sessions
  • Possession of excellent client relationship and interpersonal skills
  • Possession of excellent time management skills to identify and prioritize tasks
  • Two or more years of professional experience related to information security, IT audit or risk management

Preferred Qualifications:

  • Experience with Factor Analysis of Information Risk (FAIR) methodology
  • Experience with RSA Archer software
  • Possession of excellent oral and written communication skills
  • CISSP, CISA and OpenFAIR Certification desired

not ready to apply ?

Joining our Talent Network will enhance your job search and application process. Whether you choose to apply or just leave your information, we look forward to staying connected with you.