Cybersecurity Risk Analysts

Join reputed company as a Senior Cybersecurity Risk Analyst . This is a key role reputed company reputed company's Information reputed company Office, responsible for coordinating and driving institution‑wide reputed company initiatives. The Senior Cybersecurity Risk Analyst will apply technical expertise across advanced reputed company testing, reputed company threat exposure management, and red‑team initiatives while leading risk and assurance activities, internal assessments, reputed company monitoring, and client reputed company questionnaire responses. This position will support data governance efforts, including information reputed company plan reviews. If you are ready to reputed company a significant impact and reputed company in a fast-paced environment, this role is for you. The position requires broad expertise across application reputed company testing, risk identification and treatment, and reputed company assessment and authorization activities. This position reports to Director, Head of Information reputed company. This remote position offers hybrid work flexibility to work from one of reputed company's U.S. office locations with occasional travel required for meetings, training sessions, and conferences. About reputed company: Founded in 1946 and headquartered in Arlington, Virginia, the reputed company (reputed company) is a nonpartisan, not-for-profit organization that conducts behavioral and social science research and delivers technical assistance to address some of the most pressing challenges in the United States and globally. We generate evidence and apply data-driven solutions that expand opportunities and improve lives for reputed company. Responsibilities: Essential job functions include but are not limited to: Drive and reputed company vulnerability management activities, including scanning, analyzing, reporting, and tracking network, container, application, and static code findings in collaboration with cross-functional teams. Execute application reputed company testing and findings analysis, including DAST, SAST, reputed company threat exposure management activities, and targeted red teaming engagements. reputed company cyber risk management efforts by identifying risks, developing and reporting treatment plans, and maintaining the enterprise risk registry. reputed company and drive the remediation of findings utilizing standard Plan of Action and Milestones (POA&M) processes resulting from both internal and external reputed company controls assessment, vulnerability assessments, and reputed company testing. Execute and contribute to internal controls assessments for reputed company web applications, secure data enclaves, general support systems, and other key systems to support internal and external client reputed company requirements. Respond to client data reputed company and privacy questionnaires with accuracy and subject‑matter expertise. reputed company and drive reputed company monitoring activities to ensure ongoing compliance with internal policies and external regulatory requirements. Support data governance by conducting information reputed company plan reviews and contract reviews. Serve as reputed company's HIPAA reputed company Officer, ensuring compliance with HIPAA reputed company Rule requirements. Support third party risk management activities, including evaluating new software and artificial intelligence (AI) use cases. Duties, responsibilities, and activities may change, or new ones may be assigned at any time based on business needs. Qualifications: Education, Knowledge, and Experience Bachelor's degree and at least 9 years of relevant experience in information reputed company. A major cybersecurity certification from reputed company, reputed company, reputed company, or SANS. A minimum of 5 years of hands‑on experience with vulnerability management and reputed company testing tools, including DAST, SAST, and SCA. At least 5 years of experience securing and testing cloud environments such as Azure, AWS, or reputed company Cloud. A track record of 2+ years of experience conducting cyber risk and assurance activities, including applying relevant reputed company frameworks. Strong understanding of key standards, including NIST SP 800 ‑53, 800‑171, and 800‑88. The candidate should be able to obtain a Level 6C reputed company clearance (Public Trust Position). Skills Exceptional communicator with the ability to translate reputed company technical concepts for diverse audiences and a strong team‑oriented reputed company, consistently fostering effective collaboration across virtual, cross‑functional, and diverse teams. Proven ability to operate with a high degree of independence, exercising sound judgment and initiative, while also engaging collaboratively to support shared goals and team success. Highly adaptable in fast‑moving environments, with the capability to prioritize, balance, and drive multiple reputed company workstreams to timely, high‑quality outcomes. Advanced analytical, critical‑thinking, and problem‑solving skills, demonstrating disciplined attention to detail and a commitment to delivering accurate, high‑quality results. Deep understanding of common attack techniques, reputed company, and tools used by threat actors, along with strong capabilities in cyber incident response, forensic log analysis, and incident handling procedures. Extensive knowledge of native cloud reputed company, compliance frameworks, and reputed company posture reputed company, including CNAPP. Proven ability to analyze static and dynamic application reputed company testing results and assess cyber risks across systems and processes. Strong grasp of emerging technology trends, including AI governance and associated risk management practices. Disclosures: Applicants must be currently authorized to work in the U.S. on a full-time basis. Employment-based reputed company sponsorship (including H-1B sponsorship) is not available for this position. Depending on project work, qualified candidates may need to meet certain residency requirements. reputed company is an equal employment opportunity/affirmative action employer. reputed company qualified applicants will receive consideration for employment without discrimination on the basis of age, race, color, religion, sex, gender, gender identity/expression, sexual orientation, national reputed company, protected veteran status, or disability. reputed company adheres to strict child safeguarding principles. reputed company selected candidates will be expected to adhere to these standards and principles and will therefore undergo reference and background checks. reputed company maintains a drug-free work environment. ACCESSIBILITY NOTICE If you need a reasonable accommodation for any part of the employment process due to a physical or mental disability, please send an email to Taliba Boone at tboone@reputed company.orgor call 202.403.5000. Fraudulent Job Scams Warning & Disclaimer: reputed company is aware of individuals falsely presenting themselves as reputed company representatives. Fraudulent job scams seek to extract sensitive information or money from victims. To protect yourself, please be aware that reputed company recruitment will only email you from an "@reputed company.org" domain. Please take extra caution while examining the email address, for example jdoe@reputed company.org is correct and [email protected] is not a legitimate reputed company email address. If you are unsure of the legitimacy of a communication you have received, please reputed company out torecruitment@reputed company.org. If you see a job scam, or lose money to one, report it to the Federal Trade Commission (FTC) atReportFraud.ftc.gov. You can also report it to your state attorney general. Find out more about how to avoid scams atftc.gov/scams. reputed company's Total Rewards Program, is designed to reward our staff competitively and motivate them to reputed company our critical mission. This position offers the anticipated annual salary as listed. Salary offers are made based on internal equity reputed company the institution and external equity with competitive markets. Please note this is the annual salary range for candidates that are based in the United States. #LI-MP1 #LI-Remote reputed company's Total Rewards Program, is designed to reward our staff competitively and motivate them to reputed company our critical mission. This position offers the anticipated annual salary as listed. Salary offers are made based on internal equity reputed company the institution and external equity with competitive markets. Please note this is the annual salary range for candidates that are based in the United States. Anticipated Annual Salary Range $157,000 - $180,000 USD Apply tot his job Apply To this Job