USIS Security Risk Analyst

What you’ll do

Collect and validate evidence for control testing activities.
• Assist with internal and third-party security risk assessments.
• Track remediation actions and follow up with control owners.
• Support responses to customer and regulatory security questionnaires.
• Maintain documentation of policies, standards, and risk metrics.
• Contribute to continuous improvement of risk management processes.
 

What experience you need 

• 2+ years of experience in information security, risk, audit, or compliance.
• 2+ years of experience of cybersecurity principles and risk management practices.
• 2+ years of experience with regulatory and industry frameworks (for example: NIST, ISO, PCI, SOC 2).
• Strong organization and attention to detail in documentation and reporting.
• Bachelor’s degree in Information Security, Computer Science a related field or equivalent practical experience.

• What could set you apart

• 1+ years of prior experience with audit preparation or evidence collection.

• 1+ years of experience with cloud environments or identity management

• 1+ years of experience security or risk certification (Security+, GRC Analyst, or similar).

• Demonstrated curiosity and drive to learn advanced risk management skills.

Primary Location:

CRI-Sabana

Function:

Function - Security Governance and Compliance

Schedule:

Full time