Technical Security Risk & Governance Analyst

Hi,

This is Amit Kumar from Redleo Software Inc. Please review the job description below and contact me at xxxxxxxxxxxxxxxif interested.

Position : Technical Security Risk & Governance Analyst
Employment : Long Term/Contract
Location: Hybrid / Harrisburg, PA
Interview Format: Video

Technical Security Risk & Governance Analyst 

The Analyst ensures cybersecurity compliance by performing risk assessments and control testing across on-prem and cloud systems. You will align operations with NISTxxxxxxxxxxxxxxx, CSF, CJIS, and HIPAA frameworks. 

Key Responsibilities: 

• Risk & Control: Conduct technical assessments, threat modeling, and Authority to Operate (ATO) reviews.
• Governance: Manage security policies, lead audit evidence collection, and administer GRC tools.  
• Vulnerability/Third-Party Risk: Oversee patching SLAs and evaluate vendor SOC 2 reports.
• Reporting: Develop Power BI dashboards and brief leadership on risk posture. 

Requirements: 

• 3+ years in InfoSec, Audit, or Risk Management.
• Expertise in NIST frameworks and GRC platforms.
• Relevant certifications (CISSP, CISA, CRISC) preferred.

Amit Kumar

Sr.Technical Recruiter
Redleo Software Solution
1201 N. Orange Street, Suite#7495
Wilmington Delaware, 19801 (USA)
Contact: +xxxxxxxxxxxxxxx
Amit@redleosoft.com || 

Linkedin ID: linkedin.com/in/amit-kumar-16b8901b5

Disclaimer(s):
At Redleo, we are committed to diversity, inclusion, and value a workplace that reflects the richness of the communities we serve. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, familial status, veteran status, or disability status in accordance with US law. Our hiring decisions are based solely on qualifications and merit. We offer equal opportunity for all qualified candidates. If you believe you have experienced discrimination during the application process, please contact [xxxxxxxxxxxxxxx] We take such allegations seriously and investigate them promptly.

This email and any attachments, including resumes and cover letters, contain confidential information intended only for the addressee(s) related to the job application process. We take data security seriously. If you are not the intended recipient, please do not disclose, distribute, or copy this information. Please notify the sender and delete the email from your inbox. The information contained in this email can only be used for the lawful purpose of considering the applicant for the position.