Address
SalaryCybersecurity and Compliance Analyst – Information Technology
Clark Schaefer Hackett
Location: Remote
Clark Schaefer Hackett is a results-driven advisory and accounting firm. We are forward thinking, innovators, and problem solvers. We are passionate about helping clients succeed—and strive to be a catalyst for growth and innovation.
If you are interested in experiencing diversity within your work experience; expanding your personal knowledge base; and joining an elite community, then we have a great opportunity for you! Clark Schaefer Hackett has an opportunity for you.
Under the supervision of the Senior Manager of Infrastructure and Cybersecurity, The Cybersecurity and Compliance Analyst is responsible for the implementation and management of information security strategy, policies, processes, and tools. This role may, on occasion, participate in external client engagements as a cybersecurity consultant.
Primary Responsibilities:
- Define and develop security requirements based on business strategies, risk assessments, threat modeling, testing and existing system analysis
- Conduct vulnerability assessments, penetration testing and security reviews to proactively identify potential risks and recommend appropriate remediation measures Develop and implement information security policies, standards, and procedures in alignment with industry best practices and regulatory requirements Manage cybersecurity tools to monitor and address gaps
- Design and implement a vulnerability management program to identify, assess, prioritize, and remediate vulnerabilities across the organization's infrastructure, applications and systems
- Collaborate with IT teams to develop and implement effective patch management processes
- Manage security awareness training campaigns and drive adoption and awareness of security best practices
- Mentor team members, facilitate knowledge sharing and conduct training sessions to enhance the team's technical skills and overall expertise
- Stay updated on the latest information security trends, technologies, and regulatory changes, and leverage this knowledge to drive innovation and improve security practices
- Coordinate with leadership to set cybersecurity strategy and roadmap
- Lead cyber security incident responders in response activities including investigation, coordination, review, and reporting
- Operate as part of a team to provide cybersecurity consulting services to Clark Schaefer Hackett clients to evaluate and document controls
Qualifications:
- Excellent leadership and communication skills, with the ability to collaborate effectively with cross-functional teams and present complex information to non-technical stakeholders
- Professional demeanor with a proactive and dedicated work ethic
- Strong time management skills with the ability to independently manage multiple projects and deadlines as assigned
- Ability to work independently and efficiently under pressure
- High attention to detail and problem-solving skills
- Exceptional analytical skills with the ability to leverage a wide variety of data and related tools to improve the efficiency of the organization
- Strong communication, team-building, and organizational skills
- Solid relationship management skills with the ability to assume increasing responsibilities in a rapidly changing environment
- Ability to work within a flexible work environment
- Strong project management, critical thinking, and problem-solving skills
- Ability to work independently, share knowledge, and work in a strong team orientated environment
- Demonstrates dependability and sense of urgency
- Commitment to firm values
Education & Experience:
- Bachelor's degree in computer science, information systems or a related field; relevant certifications (e.g., CISSP, CISM, CRISC) are highly desirable
- 5+ years of experience in information security, with a focus on compliance, documentation and reporting, and vulnerability management
- Deep understanding of industry standards and frameworks (e.g., NIST Cybersecurity Framework, PCI DSS) and their practical application
- Strong knowledge of information security principles, concepts, technologies and risk management methodologies
- Proficiency in conducting compliance audits and assessments, as well as experience with regulatory requirements (e.g., GDPR, HIPAA)
- Hands-on experience with vulnerability scanning tools, penetration testing methodologies and patch management processes
Why Us?
The Clark Schaefer Hackett community includes trusted advisors with Clark Schaefer Hackett, Clark Schaefer Consulting, Strategic HR, and Clark Schaefer Executive Search. This elite community leverages strategic skills, financial and operational leadership, proven acumen, and technological advances to successfully provide customized solutions for every client and every engagement, and we apply this approach to our associates.
Clark Schaefer Hackett is committed to providing equal opportunity to all classes protected by federal, state, and local law. Employment-related decisions are made without regard to race, religion, color, national origin, sex, disability, age, military status, veteran status, sexual orientation, gender identity, genetic information, or any other legally protected status. Equal employment opportunity includes, but is not limited to, recruitment, hiring, placement, compensation, training, promotion, transfer, demotion, and termination.
Our employment objective is to select associates who meet high standards of personality, character, and occupational qualifications, who can carry on our work competently, have capacity for growth and will become a vital part of our organization.
To learn more about joining the Clark Schaefer Hackett community, please visit our Firm website, LinkedIn, or send your resume to our amazing Talent Acquisition team. We look forward to meeting you soon!
#LI–AL1
