Senior Security Analyst , level 3
New York City
GRC – Risk debt inventory / cyber control debt (Prefers GRC space )
Data access management / insider threats
Identify the risk
Documentation Evidence / Transcription / remediation / close out – progressing and addressing
Need to understand Cyber Controls (GRC – Governance risk compliance)
Prefers Financial Security Industry (Pharma or Med Device) Regulated industries
They use Service Now (its very customized)
Familiarity with – word/excel/PowerPoint – They’ll look at large data sets in Excel – Should have used Excel
Power BI or QlikView is nice to have / Tableau too . not required
SQL nice to have but not required – very helpful though
2 positions, 3x onsite in NYC – both positions the same (working together with the team too)
Information protect / cyber infrastructure / Cyber ops / NIST / FAIC handbook (should be familiar) – helps to identify the gaps
They are not building the tools – they help decide on what tools should be used/implemented
Interview is 2 rounds