Sr. Cybersecurity Analyst, Vendor Assessment
7 days ago
- Conduct vendor evaluations thorough assessments of potential vendors to determine their suitability for partnership.
- Conduct comprehensive security risk assessments of third-party vendors, evaluating their security controls, policies, standards, and infrastructure.
- Analyze vendor capabilities, financial stability, reputation, and compliance with relevant regulations and standards.
- Aid in the development and maintenance of comprehensive third-party risk management procedures, trackers, and documentation, aligned with industry best practices.
- Collaborate with procurement teams to develop selection criteria and assist in vendor selection processes.
- Help to establish and maintain key performance indicators (KPIs) and service level agreements (SLAs) for vendors.
- Monitor vendor performance against established metrics and SLAs.
- Identify areas for improvement and work with vendors to implement corrective actions.
- Develop risk mitigation strategies and protocols in collaboration with internal stakeholders.
- Conduct regular risk assessments and implement measures to minimize risk exposure.
- Ensure that vendors comply with contractual agreements, regulatory requirements, and company policies.
- Stay informed on relevant regulations and industry standards impacting vendor relationships.
- Conduct audits and re-assessments to verify vendor compliance with established standards, prioritizing those with highly sensitive data.
- Carry out application security vulnerability scanning and supply remediation options, where applicable.
- If and only when necessary, attend third-party onsite visits in support of any part of the vendor assessment process (willingness to travel to vendors up to 10% of the time).
- Prepare comprehensive reports and presentations summarizing vendor assessments, performance evaluations, and risk analyses.
- Provide insights and recommendations based on data-driven analysis to support decision-making processes.
- Communicate findings and recommendations to relevant stakeholders, including senior management and cross-functional teams.
- Contribute to Kanban boards and/or other tracking tools to increase visibility into assigned work and promote workload efficiencies. Stay on top of latest emerging technology trends and proactively update the vendor assessment processes where needed.Qualifications
- 5+ years of experience with third-party vendor security assessment methodologies and security monitoring tools.
- Proven experience in vendor management, procurement, supply chain management, or related roles.
- Proven experience in conducting risk assessments.
- Strong analytical skills with the ability to interpret complex data and draw actionable insights.
- Ability to articulate identified risks to management and key stakeholders in a clear, actionable manner.
- Excellent communication and interpersonal skills, with the ability to collaborate effectively with internal and external stakeholders.
- Detail-oriented mindset with a focus on accuracy and precision.
- Ability to work independently, manage multiple priorities, and meet deadlines in a fast-paced environment.
- Knowledge of compliance, conduct, and operational risk management frameworks and processes.
- Expertise in common technology controls for industry best practices (e.g., from NIST, ISO, ISACA, GLI etc.) frameworks.
- Ability to collaborate with high-performing teams and individuals throughout BetMGM and externally to accomplish common goals.
- Bachelor's or advanced degree in technology or a related field or equivalent work experience.
- Relevant certifications (e.g., CSCP, CPIM, CISA) are a plus.The annual salary range for this position is $89,200 to $117,075. Factors which may affect starting pay within this range may include geography/market, skills, education, experience and other qualifications of the successful candidate. This position is also eligible for participation in a performance-based bonus plan.Gaming Compliance & Licensing RequirementsAs an online gaming company, BetMGM is required to comply with state gaming regulations which includes licensing obligations. Applicable employees must be licensed by at least one jurisdictional agency, although certain positions require licensing by multiple agencies. Failure to become licensed or maintain licensure with each agency as required for the role may result in termination of employment. Please note that the licensing process includes comprehensive background checks which may include a review of criminal records, financial history, and personal background verification.In addition, candidates must comply with and support the company's responsible gambling policies, procedures and initiatives.About Our CultureBuilding BetMGM from the ground up takes effort, energy, and teamwork, but that's what will make leading this industry all the more satisfying. We stay focused on our main goal with the help of these four company pillars:Believe in Your Game - Take your shot There's a freedom to explore ideas usually only start-ups are lucky enough to experience.Backed by the Best - With our expertise-merged with that of our world-class investors-we have the opportunity to take this business, and ourselves, farther than anyone has ever imagined.Do What's Right - We operate with clarity and simplicity, always doing the right thing by our customers and each other, standing shoulder to shoulder every day.Hustle Hard - Our combined commitment and ambition is what drives us to create some of the most innovative products in the industry.What We OfferAs a valued employee, we're committed to giving you the resources and support you need. We offer Medical, Dental, Vision, Life Insurance, Commuter Benefits, Paid Time Off, Holidays, Employee Resource Groups and moreApplicable salary ranges may differ across markets. Actual pay will be determined based on experience and other job-related factors permitted by law. The position is also eligible for an annual bonus.BetMGM LLC is an Equal Opportunity Employer. We provide equal employment opportunities to all qualified individuals, regardless of race, religion, gender, gender identity, age, marital status, national origin, sexual orientation, citizenship status, veteran status, disability, or any other legally protected status. As an organization, we are unwavering in our commitment to maintaining a discrimination-free work environment, and fostering a culture of inclusivity, belonging and equal opportunity for all employees and applicants.We understand that each card in the deck plays a unique role in any given hand, just as our employees each play a unique role in accomplishing our company goals. So, we are committed to an inclusive culture for all and empowering our employees to thrive in meaningful careers. At BetMGM, we play to win, and we are "all in" together. If your experience looks a little different from what we've identified and you think you've got what it takes, we'd love to learn more about you.If you need assistance or accommodation with your application due to a disability, you may contact us at recruitment@betmgm.com.This job description is not an exclusive or exhaustive list of duties a person in this position may be asked to perform from time to time.
-
Sr. Cybersecurity Analyst, Vendor Assessment
4 weeks ago
Atlantic City, United States BetMGM Full timeAbout Us We are BetMGM. We are revolutionizing sports betting and online gaming in the United States. We are a partnership between two powerhouse organizations-MGM Resorts International and Entain Group. You know our name through our exciting portfolio of brands including BetMGM Sportsbook, Borgata online, Party Casino and Party Poker. We aim to bring our...
-
Cybersecurity Operations Analyst
3 weeks ago
Oklahoma City, Oklahoma, United States MidFirst Bank Full timeCybersecurity Operations AnalystMidFirst Bank is seeking a highly skilled Cybersecurity Operations Analyst to join our Cybersecurity Operations Team. As a key member of our team, you will be responsible for designing, implementing, and managing security systems to protect our enterprise from cyber threats.Key Responsibilities:Administer Okta and related...
-
Cybersecurity Analyst
4 weeks ago
Atlantic City, United States Ocean Casino Resort Full timeAbout the Role The Cybersecurity Analyst protects company hardware, software, networks, and data from potential threat actors. The analyst's primary role is to understand Ocean Casino Resort's IT infrastructure in detail, monitor it at all times, and identify and address vulnerabilities that create potential risks to our information security posture. *Must...
-
Cybersecurity Analyst
4 weeks ago
Atlantic City, United States Ocean Casino Resort Full timeAbout the Role The Cybersecurity Analyst protects company hardware, software, networks, and data from potential threat actors. The analyst's primary role is to understand Ocean Casino Resort’s IT infrastructure in detail, monitor it at all times, and identify and address vulnerabilities that create potential risks to our information security posture. ...
-
Cybersecurity Operations Analyst
4 weeks ago
Oklahoma City, Oklahoma, United States MidFirst Bank Full timeCybersecurity Operations AnalystMidFirst Bank is seeking a highly skilled Cybersecurity Operations Analyst to join our Cybersecurity Operations Team. As a key member of our team, you will be responsible for designing, implementing, and managing multiple security solutions to protect our organization's assets.Key Responsibilities:Design, implement, and manage...
-
Cybersecurity Technical Analyst
4 weeks ago
Kansas City, Missouri, United States Peraton Full timeCybersecurity Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Analyst to join our team at Peraton. As a Cybersecurity Analyst, you will play a critical role in supporting our enterprise-level hybrid cloud data center operations.Key Responsibilities:Conduct vulnerability analysis and self-assessment technical analysis to identify...
-
Cybersecurity Technical Analyst
3 weeks ago
Kansas City, Missouri, United States Peraton Full timeCybersecurity Technical AnalystWe are seeking a highly skilled Cybersecurity Technical Analyst to join our team at Peraton. As a Cybersecurity Technical Analyst, you will play a critical role in supporting our enterprise-level hybrid cloud data center operations.Responsibilities:Conduct vulnerability analysis and self-assessment technical analysisMonitor and...
-
Cybersecurity Technical Analyst
4 weeks ago
Kansas City, Missouri, United States Peraton Full timeCybersecurity Technical Analyst Job DescriptionWe are seeking a highly skilled Cybersecurity Technical Analyst to join our team at Peraton. As a Cybersecurity Technical Analyst, you will play a critical role in supporting our enterprise-level hybrid cloud data center operations.Key Responsibilities:Conduct vulnerability analysis and self-assessment technical...
-
Cybersecurity Analyst
4 weeks ago
Panama City, Florida, United States Thor Solutions Full timeJob SummaryTHOR Solutions is seeking a highly skilled Cybersecurity Analyst to join our team at the Naval Surface Warfare Center Panama City Division (NSWC PCD) in Panama City, FL. As a Cybersecurity Analyst, you will play a critical role in supporting National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) certification and...
-
Cybersecurity Technical Analyst
15 hours ago
Kansas City, Missouri, United States Peraton Full timeCybersecurity Technical AnalystWe are seeking a highly skilled Cybersecurity Technical Analyst to join our team at Peraton. As a key member of our cybersecurity team, you will be responsible for supporting the US Marine Corps enterprise-level hybrid cloud data center operations.Key Responsibilities:Conduct vulnerability analysis and self-assessment technical...
-
Cybersecurity Analyst Associate
4 weeks ago
Oklahoma City, Oklahoma, United States General Dynamics Information Technology Full timeCybersecurity Analyst Associate Job DescriptionAt General Dynamics Information Technology, we are seeking a highly skilled Cybersecurity Analyst Associate to join our team. As a Cybersecurity Analyst Associate, you will play a critical role in ensuring the security and integrity of our clients' systems and data.Key Responsibilities:Perform forensic analysis...
-
Cybersecurity Analyst
5 months ago
Panama City, United States ICI Services Full timeICI Services is looking for a motivated individual to provide cybersecurity expertise as a Cybersecurity Analyst to our US Navy client in Panama City, FL. ICI Services is an Employee-Owned Company providing Engineering & Integration, Systems Acquisition, Information Warfare, and In-Service Sustainment to US government clients. Security Clearance: *...
-
Cybersecurity Program Analyst
4 weeks ago
Arlington, VA, United States Booz Allen Full timeCybersecurity Program AnalystThe Opportunity:When our country’s cybersecurity is on the line, simply reacting is not enough, we need a plan. And when that plan needs to support our defense infrastructure, we need strategic policy development. That’s why we need you, a cybersecurity program analyst with the expertise required to analyze the policies that...
-
Senior Cybersecurity Analyst
2 weeks ago
Panama City, Florida, United States SIM&S, Inc. Full timeJob Title: Senior Cybersecurity AnalystAt SIM&S, Inc., we are seeking a highly skilled Senior Cybersecurity Analyst to join our team. As a key member of our cybersecurity team, you will be responsible for developing and implementing cyber control solutions, performing remediation of cyber incidents, and conducting field surveys, installations, and...
-
Cybersecurity Analyst
2 days ago
Kansas City, Missouri, United States Peraton Full timeJob Title: Cybersecurity AnalystPeraton is seeking a highly skilled Cybersecurity Analyst to join our team in Kansas City, MO. As a Cybersecurity Analyst, you will play a critical role in supporting the US Marine Corps (USMC) enterprise-level hybrid cloud data center operations.Responsibilities:Support USMC enterprise-level hybrid cloud data center...
-
Cybersecurity Analyst Associate
4 weeks ago
Oklahoma City, Oklahoma, United States General Dynamics Information Technology Full timeCybersecurity Analyst Associate Job DescriptionJob Summary:We are seeking a highly skilled Cybersecurity Analyst Associate to join our team at General Dynamics Information Technology. As a Cybersecurity Analyst Associate, you will play a critical role in ensuring the security and integrity of our clients' systems and data.Key Responsibilities:Perform...
-
Cybersecurity Threat Analyst
4 weeks ago
Oklahoma City, Oklahoma, United States General Dynamics Information Technology Full timeCybersecurity Analyst Job DescriptionAt General Dynamics Information Technology, we're seeking a skilled Cybersecurity Analyst to join our team. As a Cybersecurity Analyst, you'll play a critical role in protecting our clients' missions and ensuring the security of their systems.Key Responsibilities:Perform forensic analysis of digital information and gather...
-
Cybersecurity Director
2 weeks ago
Middletown Township, NJ, United States AT&T Full timeDirector Cybersecurity Job DescriptionAT&T is seeking a highly skilled Director Cybersecurity to lead our global cybersecurity programs and protect our Enterprise infrastructure, networks, devices, applications, and data. As a key member of our Chief Security Office, you will be responsible for directing cybersecurity programs that safeguard our customers,...
-
Senior Cybersecurity Analyst
3 weeks ago
Panama City, Florida, United States SIM&S, Inc. Full timeJob SummaryWe are seeking a highly skilled Cybersecurity Analyst to join our team at SIM&S, Inc. The ideal candidate will have a strong background in cybersecurity and experience in developing and implementing cyber control solutions.Key ResponsibilitiesDevelop and implement cyber control solutions to protect information systems assets.Conduct field surveys,...
-
Cybersecurity Lead
4 weeks ago
new york city, United States PRI Technology Full timeLead Cybersecurity Analyst/PMNew York, NY (Hybrid: 3 days onsite per week)Full Time (No 3rd party resumes allowed)PRIMARY FUNCTION:The Lead Cybersecurity Analyst is responsible for leading implementation of the organization's cybersecurity controls, to implement and maintain reporting dashboards and metrics, to manage cybersecurity projects, will participate...