Cyber Security Analyst

KEY RESPONSIBILITIES Governance: Develop and maintain cybersecurity policies, standards, and procedures. Collaborate with leadership to align cybersecurity initiatives with business objectives. Lead or support security awareness and training initiatives. Risk Management: Identify, assess, and monitor cybersecurity risks across the organization. Conduct risk assessments and gap analyses on systems, applications, and vendors. Work with stakeholders to implement risk mitigation strategies and track remediation activities. Compliance: Ensure compliance with regulatory and industry standards such as ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI-DSS, etc. Prepare and support internal and external audits and security assessments. Maintain documentation of compliance controls and audit evidence. Reporting & Documentation: Produce risk reports and metrics for senior management and stakeholders. Maintain accurate records of compliance activities and risk treatment plans. Track and report on the status of cybersecurity initiatives and issues. Required Skills and Qualifications: Bachelors degree in Cybersecurity, Information technology, or a related field. 2-3+ years of experience in information security governance, risk, or compliance. Strong knowledge of GRC frameworks and regulatory requirements. Familiarity with risk assessment methodologies and tools. Excellent analytical, organizational, and communication skills. Preferred Qualifications: Certifications such as ISO 27001 Lead Implementer, or similar. Experience with GRC tools such as RSA Archer, ServiceNow GRC..etc Understanding of third-party risk management and vendor assessments. CANDIDATES WHO CAN JOIN IMMEDIATELY ARE HIGHLY PREFERRED.