RemoteLeaf Logo
Log in Sign up

Senior Cybersecurity Risk Analyst

1 day, 21 hours ago
United States
Full-time
Lead
Security Analyst
Cybersecurity
AWS Azure Cybersecurity GCP Penetration Testing
Apply Now
American Institutes for Research

American Institutes for Research

American Institutes for Research is a leading behavioral and social science research organization dedicated to using rigorous evidence to enhance everyday life and address critical societal issues across various fields, including education, health, and...

Professional Services
1K-5K
Founded 1946
View All Jobs 27

Description

  • Drive vulnerability management activities, including scanning, analysis, reporting, and tracking of findings across network, container, application, and static code environments.
  • Execute application security testing and findings analysis, including DAST, SAST, continuous threat exposure management, and targeted red team engagements.
  • Lead cyber risk management by identifying risks, developing treatment plans, reporting status, and maintaining the enterprise risk registry.
  • Oversee remediation of security findings through Plan of Action and Milestones (POA&M) processes.
  • Perform internal controls assessments for web applications, secure data enclaves, general support systems, and other key systems.
  • Respond to client data security and privacy questionnaires with accurate subject matter expertise.
  • Perform continuous monitoring activities to support compliance with internal policies and external regulatory requirements.
  • Support data governance by reviewing information security plans and contracts.
  • Serve as AIR’s HIPAA Security Officer and ensure compliance with HIPAA Security Rule requirements.
  • Support third-party risk management, including evaluation of new software and AI use cases.

Requirements

  • Bachelor’s degree and at least 9 years of relevant information security experience.
  • A major cybersecurity certification from ISC2, ISACA, OffSec, or SANS.
  • At least 5 years of hands-on experience with vulnerability management and security testing tools, including DAST, SAST, and SCA.
  • At least 5 years of experience securing and testing cloud environments such as Azure, AWS, or Google Cloud.
  • At least 2 years of experience conducting cyber risk and assurance activities using relevant security frameworks.
  • Strong understanding of NIST SP 800-53, NIST SP 800-171, and NIST SP 800-88.
  • Ability to obtain a Level 6C Security clearance (Public Trust position).
  • Exceptional communication and collaboration skills across virtual, cross-functional, and diverse teams.
  • Ability to work independently, exercise sound judgment, and manage multiple concurrent workstreams.
  • Advanced analytical, critical-thinking, problem-solving, and attention-to-detail skills.
  • Strong understanding of attack techniques, threat actor tools, incident response, forensic log analysis, and incident handling procedures.
  • Knowledge of native cloud security, compliance frameworks, and CNAPP solutions.
  • Ability to analyze static and dynamic application security testing results and assess cyber risks across systems and processes.
  • Understanding of AI governance and emerging technology risk management practices.
  • Must be currently authorized to work in the U.S. on a full-time basis.
  • Employment-based visa sponsorship, including H-1B sponsorship, is not available.
  • Depending on project work, qualified candidates may need to meet certain residency requirements.

Benefits

  • Anticipated annual salary range of $157,000 to $180,000 USD.
  • Remote position with hybrid work flexibility from one of AIR’s U.S. office locations.
  • Occasional travel for meetings, training sessions, and conferences.
  • AIR’s Total Rewards Program designed to reward staff competitively.
  • Salary offers based on internal equity and external market competitiveness.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

SoFi

Senior Insider Trust & Fraud Investigator

SoFi 1K-5K Capital Markets

SoFi is hiring a technical investigator for its Internal Trust & Fraud Team to lead sensitive investigations into employee activity, financial crimes, and emerging risk typologies across a fast-moving financial services environment.

United States Full-time Senior Security Analyst
1 day, 8 hours ago
Ivanti

Information Security Data and Risk Analyst

Ivanti 1K-5K Internet Software & Services

Ivanti is hiring a Security Data and Risk Analyst to build visibility into security and risk metrics and support executive decision-making across its global information security organization.

United States Full-time Senior Data Analyst Security Analyst
Cybersecurity Go Python SIEM
1 day, 9 hours ago
Moniepoint

Transaction Monitoring Analyst

Moniepoint 1K-5K Diversified Financial Services

Moniepoint is hiring a Transaction Monitoring Analyst to help detect, investigate, and escalate suspicious transaction activity across customer accounts in its fast-growing financial services platform.

Nigeria Full-time Mid Level Security Analyst
1 day, 9 hours ago
Recorded Future

Fraud Analyst

Recorded Future 251-1K Professional Services

Recorded Future is hiring a Fraud Analyst for its Threat Intelligence team to research cyber and fraud-related threats, analyze multilingual sources, and produce actionable intelligence for internal and external stakeholders.

United States Full-time Junior Security Analyst
$78k-$118k
Cybersecurity DNS Jupyter Python TCP/IP
1 day, 9 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers