Senior InfoSec Risk Analyst
Miami, FL
Applications have closed
Papa
Papa partners with health plans and employers to provide companionship services for older adults and families. See how we can help you.About the Role:
You will be filling an essential role in Papa’s IT Security team. We constantly partner with upstream/downstream clients & vendors that require thorough risk assessments performed and submitted by us. You will carry out risk assessments, oversee our risk assessment platform, and meet the SLAs required for submission deadlines. You will also interact with our client/vendor base representatives and perform any follow-up questions when necessary.
To be successful, you must be organized and resourceful, possess knowledge and experience in security frameworks, have good problem-solving skills, and have high-level interpersonal skills.
Here is how to tell if you are what Papa is looking for:
- You enjoy working as part of a collaborative team.
- You consider yourself to be a top talent.
- You have a strong passion for securing applications: and excellent interpersonal and communications skills.
- You are Self-motivated and results-oriented.
- You have a demonstrated track record dealing well with ambiguity, prioritizing needs, and delivering measurable results.
- You are a critical thinker who seeks to understand the business and its control environment.
- You possess a relentless focus on quality and timeliness.
Essential Job Functions:
- Review, respond to, and complete upstream and downstream Risk Assessments
- Oversee Papa's Risk Assessment Management platform
- Oversee internal risk management initiatives
- Practice IT security procedures relevant to HITRUST, SOC2, HIPAA, NIST 800-xx frameworks
- Review Service Agreements to ensure alignment with scope and SLAs
- Participate in department projects when requested
- Support other related IT security duties
Required Qualifications:
- 7+ years of experience in a security role or independently managing customer security assessments and questionnaires.
- Knowledge of information security and technology best practices, regulations, and regulatory trends, especially regarding auditing and control testing of information security programs.
- Experience in responding to RFPs for client/payor/vendor security assessments and questionnaires
- Prior experience leading security governance activities
- Prior experience leading and supporting various risk assessments
- Demonstrated organizational and project management skills
Desired Qualities:
- Excellent interpersonal and communication skills.
- Self-motivated and results-oriented.
- Demonstrated track record dealing well with ambiguity, prioritizing needs, and delivering measurable results.
- You are a critical thinker who seeks to understand the business and its control environment.
- You possess a relentless focus on quality and timeliness.
Papa’s culture is People-first. While we have an incredible team of hard working Papa people, at the end of the day, our company is really about family and community – and we celebrate that among our employees. We encourage everyone to truly bring their whole authentic selves to work. To be transparent. To be non-hierarchical. And, above all, to be a really good person.
We see ourselves as a place where every Papa employee feels they belong, a place where careers flourish, a place that brings back purpose and joy to work, and a culture where visionaries/entrepreneurs are developed.
Papa’s mission is at the core of our total rewards philosophy, wherein we attract and retain high-potential talent aligned with our journey. We offer gender-neutral and inclusive parental leave policies that offer up to 16 weeks of 100% paid parental leave. We immensely value the benefits of a flexible workplace; while designing remote-first principles, we ensured that Papa people feel psychologically safe about their career interests while being remote.
Beyond benefits: We want to care for the whole employee and their families. To stay true to this commitment, we offer family care leave in addition to a generous paid time off policy, 401(k) match up to 4%; family forming support through access to Carrot; emotional health support tools through our medical plans such as Ginger, Happify and a host of events through a monthly culture calendar that enable emotional connectedness in a remote work environment.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Audits Governance HIPAA HITRUST NIST Risk assessment Risk management Security assessment SLAs SOC 2
Perks/benefits: 401(k) matching Flex hours Flex vacation Health care Medical leave Parental leave Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Senior Cyber Security Specialist jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open DevOps-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open CEH-related jobs
- Open EDR-related jobs