Senior Third Party Security Assessor (Remote)
ExpediaFull Time
Senior (5 to 8 years)
Candidates should have 4-6+ years of experience in cybersecurity, cyber risk analysis, or technical control implementation. Practical experience implementing or operating security controls across areas such as endpoint security, vulnerability management, identity and access management, cloud security, or network security is required. A solid understanding of risk management principles, including risk likelihood and impact analysis, is necessary. Familiarity with cyber risk frameworks such as NIST RMF, ISO 27005, or Open FAIR is expected, with hands-on experience being a plus. The ability to translate technical security issues into risk language understandable by business stakeholders is important. Experience working with GRC platforms or risk tracking tools is also a requirement. A Bachelor's degree or equivalent experience in Cybersecurity, Information Technology, Risk Management, or a related field is needed.
The Cyber Risk Senior Analyst will contribute to the identification, assessment, and analysis of cyber risks across infrastructure, cloud, applications, and business systems. They will support the implementation and validation of technical controls, maintain and update the cyber risk register, and assist in the quantification of cyber risks. The role involves collaborating with control owners for remediation, participating in risk scenario modelling, and providing input into security governance forums. Additionally, the analyst will monitor the threat landscape, provide technical support during audits, and promote risk awareness by providing guidance on security control requirements, especially in line with NIST, ISO 27001, and other frameworks.
Data management solutions for enterprises
Cohesity specializes in data management solutions for data centers and cloud environments. Its main products, the Cohesity DataPlatform and Cohesity DataProtect, help businesses consolidate tasks like backup, recovery, and data storage into one platform, making it easier to manage large amounts of data while reducing complexity and costs. Unlike many competitors, Cohesity focuses on simplifying data management for medium to large enterprises across various industries, including finance and healthcare. The company's goal is to help businesses manage, protect, and gain insights from their data more efficiently.