Information Security Risk Analyst

As a Cybersecurity Risk Analyst at EQ, you will play a vital role in identifying, assessing, and analyzing potential cybersecurity threats and vulnerabilities across the organization's infrastructure, data, applications, mobile devices, and networks. You will work closely with various teams to conduct comprehensive risk assessments, review cloud architectures, and utilize security tools to evaluate the likelihood and impact of security risks. Your collaboration with DevOps and Cloud Engineering teams will be essential in advising on security controls and risk mitigation strategies in AWS and Azure. In addition to risk identification and analysis, you will be responsible for researching and interpreting cybersecurity requirements and standards such as GDPR, NIST, ISO27001, and other regulatory frameworks. Staying up-to-date with evolving cybersecurity regulations at local, national, and international levels will be a key part of your role. You will assist in compliance assessments, gap analysis, and ensure that relevant cybersecurity regulations are incorporated into the risk process for new and changed IT systems and applications. Furthermore, you will be involved in conducting risk analysis of third parties within the Company's supply chain and monitoring significant risk issues to completion. Your role will also include assisting in collecting and organizing data to identify risks, preparing metrics and reports, and creating regular and ad-hoc reports for executives and senior management teams. Engagement with various stakeholders and developers across the organization will be crucial in selecting tailored security training and knowledge sharing sessions on emerging threats and security risk trends. You will support the Information Security Risk Manager in developing and maintaining the EQ Security Risk Process, implementing risk management strategies, and collaborating with IT and security teams to implement technical measures. Your responsibilities will also include analyzing and improving existing information security policies, guidelines, and procedures, as well as defining best practices in the design and coding of proprietary systems. You will provide advice, education, and support to development teams in adhering to security practices using dynamic and static application security testing tools. In summary, as a Cybersecurity Risk Analyst at EQ, you will be at the forefront of identifying and mitigating cybersecurity risks, ensuring compliance with regulatory requirements, and fostering a culture of security awareness and best practices across the organization.,