Lead Security Analyst (IT Risk / Grc)

Day to Day :

Insight Global is looking for a Lead Security Analyst to support a large retail client in Dublin, CA. This senior member will lead and execute third-party security risk management and governance processes, including risk assessments, tracking mitigation efforts, and developing risk metrics and reports. The role involves leading security risk-related projects and enhancing programs such as third-party risk assessments, insider threat management, updating security policies and standards, and executing security awareness programs for both corporate and overseas offices. This role is hybrid and the candidate must be local to the Bay Area, coming onsite to the Dublin office at least 1x / wk.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity / affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and / or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal. com. To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy : .

Plusses :

Certifications : CISSP (Certified Information Systems Security Professional), CRISC (Certified in Risk and Information Systems Control)

Working knowledge of UNIX and Windows (client operates in an Azure cloud environment)

Experience with any of the following : Firewalls, VPN, PKI, IPS, Oracle Suite, MS SQL, Virtualization Security

Software programming skills

Must Haves :

5+ years of experience within Information Technology, with at least 3 years in Security and / or Risk Management. Bachelors degree preferred or equivalent combination of education and relevant experience.

Strong understanding of security governance, compliance, and risk management principles (internal frameworks include NIST, ISO 27001, ITIL, Risk IT, etc.)

Excellent analytical, organizational, and communication skills

Strong project management skills

Proficient in Microsoft Word, Excel, PowerPoint