Security Risk Assessment Analyst Job at Hollstadt Consulting, Saint Paul, MN

dE9LK3NjSmlzMGhXMFhYeWl6bWpCdTd0NWc9PQ==
  • Hollstadt Consulting
  • Saint Paul, MN

Job Description

Role : Security Risk Assessment Analyst

Location : Hybrid 3 days/week onsite on East side of Twin Cities

Contract Length : 6 month contract for hire

Rate : The hourly pay rate range for this position is $52.20–$68.40, dependent on qualifications and experience.

Hollstadt offers medical, dental, vision, life insurance, short-term disability, long-term disability, paid sick leave, and retirement benefits to eligible employees.

General Description: Client is building out a proactive Governance, Risk, and Compliance team in its security practice. However, we do not want to interview security compliance auditors. An ideal candidate will have experience in developing security programs as a thought leader with experience in the implementation of GRC. Experience in companies of similar size and industry preferred. In addition to implementing elevated GRC practices with the current team, this individual will be responsible for security risk assessments for many projects/efforts that come into our enterprise. This individual will need to be able to assess security framework controls against the stated architecture/design, be able to ask technical questions in layman's terms to requestors (across the architecture domains—network, servers, application, IAM, etc.), identify gaps in compliance to the controls, recommend mitigating controls for the gaps, and document the assessment. This individual should have experience in framing up risk escalations to a leadership team for risk decisions, following up on these decisions, tracking the risk, and monitoring the risk. This person will help offer recommendations for improvements, design, and streamline GRC oversight over all these processes and implement alongside other key GRC members.

Qualifications and Requirements:

  • 5-7 years of experience with networking, system administration, or some other infrastructure and operations background.
  • 3-5 years of experience in information security practices.
  • Basic understanding of cloud technologies (AWS, Azure, OCI) – SaaS, PaaS, IaaS, deployment, provisioning, security, etc.
  • CISSP, Security+, or other related degree or certification.
  • Experience in building Governance, Risk, and Compliance practices to elevate a security program.
  • Experience and technical knowledge working through complex risk assessments, including hardware, software, and restricted data; identifying the vulnerability gaps in solutions and practices and making recommendations for how to close the gaps in solution architecture and design.
  • Experience with security tools and technologies such as firewalls, intrusion and detection, and prevention systems, and security information and event management solutions.
  • Ability to digest, understand, and summarize external penetration test reports, compliance reports, etc., in an appropriate manner for internal stakeholder consumption.
  • Knowledge of regulatory requirements and compliance frameworks such as HIPAA, PCI, and CCPA, GDPR.
  • Knowledge of information security principles and best practices, including vulnerability management, access control, and incident response.
  • Knowledge and application of security frameworks (CIS CSC v8, NIST CSF 2.0, etc.).
  • Strong analytical and problem-solving skills, with the demonstrated ability to identify and mitigate risks proactively.
  • Ability to understand business needs and requests with regards to analyzing third parties for risk.
  • Ability to identify compensating controls to reduce identified risk.
  • Excellent communication skills with the ability to translate complex technical terms to business and other teams.
  • Collaborative mindset.

Job Tags

Hourly pay, Contract work, Temporary work, 3 days per week,

Similar Jobs

Werbrichs Landscaping

Landscape Design and Maintenance Sales Job at Werbrichs Landscaping

 ...ability to work in a team environment. ~ Excellent communication and organizational skills. ~ Extensive landscape maintenance field experience is a huge plus. ~ A degree in landscape horticulture, landscape architecture, or a related field is a huge plus.... 

Insight Global

Dispatcher Job at Insight Global

 ...Job Title: Dispatch Agent Location: Cincinnati, OH 45202 Duration: 12-month recurring contract Pay: $20-$22/hr (more for right candidate) Schedule: Onsite M-F 8-5 Required Skills & Experience: 3+ years of level 2 or 3 Help Desk experience Triaging... 

Full-service Broker-Dealer and Investment Bank

Chief Compliance Officer Job at Full-service Broker-Dealer and Investment Bank

 ...a strong emphasis on regulatory discipline, supervisory oversight, and day-to-day compliance engagement across all business lines. Position Summary The Chief Compliance Officer is responsible for the overall design, execution, and oversight of the firms enterprise... 

Teva Pharmaceutical Industries Ltd.

Pharmazeut im Praktikum (m/w/d) Pharmacovigilance Job at Teva Pharmaceutical Industries Ltd.

Beginn Mai/Juni 2026 oder auf Anfrage, Dauer 6 Monate ber Teva Teva ist ein global agierender Arzneimittelkonzern und Weltmarktfhrer unter den Generikaunternehmen. Das Herzstck unseres Erfolges sind unsere Mitarbeiter in ber 80 Lndern weltweit. Sie sorgen daf...

LHH

Freight Forwarder Job at LHH

 ...updates on shipment status and act as a single point of contact. Shipment Management : Track cargo, arrange storage, consolidate freight, and manage inventory during transit. Core Skills & Attributes Strong organizational and problem-solving skills....