Lead Information Security Analyst

Gaithersburg, MD

Posted: 08/27/2018 Industry: IT Job Number: 12033 Pay Rate: $70 - $75/hr

Our client, a Global Life Sciences Company has an immediate opening for a Lead Information Security Analyst for a 6-9 Month + Contract. Our client offers results-driven people a place where they can make a difference – every day! You will also have the opportunity to work with other like-minded, self-directed and detail oriented Top Talents in an extremely collaborative and professional environment.

Position Description (Principle Duties and Responsibilities)


Performs focused risks assessments of existing or new services and technologies
Communicates risk assessment findings to information security “customers,” or business partners
Provides consultative advice to information security customers that enables them to make informed risk management decisions.
Identifies and implements appropriate controls to effectively manage information risks as needed.
Identifies opportunities to improve risk posture, developing solutions for remediating or mitigating risks and assessing the residual risk.
Maintains strong working relationships with individuals and groups involved in managing information risks across the organization.
Identifies top human risks to the organization and the behaviors that must change to mitigate those risks.
Develops, reviews, implements, and maintains a security awareness program to mitigate human risks
Manages and leads information security awareness training .
Ensures security awareness training is engaging and influences changes in employees’ behavior .
Ensures employees and third parties understand, acknowledge, and fulfill all applicable information security policies .
Ensures the security awareness program meets all industry regulations, standards, and compliance requirements.
Creates a metrics framework that effectively measures compliance with information security policies

Position Description (Principle Duties and Responsibilities)


An understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business.
An understanding of organizational mission, values, and goals and consistent application of this knowledge.
An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner.
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
An ability to effectively influence others to modify their opinions, plans, or behaviors.
Excellent prioritization capabilities, with an aptitude for breaking down work into manageable parts, effectively assessing the priority and time required to complete each part .
An ability to identify and assesses the severity and potential impact of risks and communicate risk assessment findings to risk owners outside Information Security in a way that consistently drives objective, fact-based decisions about risk that optimize the trade-off between risk mitigation and business performance.
Excellent prioritization capabilities
An ability to work on several tasks simultaneously and pay attention to sources of information from inside and outside one’s network within an organization

Education and Experience:

BS or MA in Computer Science, Information Security, or a related field .
Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM)
[3+/5+/8+]  years of experience in an IT Audit or Enterprise Risk Management (ERM) role
[3+/5+/8+] years of experience with regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)

Apply Online
Apply with LinkedIn

Send an email reminder to:

Share This Job:

Related Jobs:

Login to save this search and get notified of similar positions.