Current jobs related to Sr. Enterprise Cyber Risk Mgmt Analyst, Progression - Ybor City FL United States - Teco Energy

  • Cyber Risk Analyst

    2 weeks ago

    Reston, VA, United States Booz Allen Full time

    Cyber Risk AnalystThe Opportunity:As a Cyber-Risk Analyst on our team, you’ll use your experience to work with DoD programs to discover their cyber risks, understand policies, and develop a mitigation plan. You’ll get technical, environmental, and personnel details from engineers and SMEs to assess the entire threat landscape. Then, you’ll help your...

  • Cyber Risk Analyst

    3 days ago

    Reston, VA, United States Booz Allen Full time

    Cyber Risk AnalystIf you are considering sending an application, make sure to hit the apply button below after reading through the entire description.The Opportunity:As a Cyber-Risk Analyst on our team, you’ll use your experience to work with DoD programs to discover their cyber risks, understand policies, and develop a mitigation plan. You’ll get...

  • Financial Industry Sr. Cyber Security Analyst

    4 weeks ago

    New York City, United States Startech Network Inc. Full time

    We are seeking an experienced Sr. Cyber Security Analyst, US Citizen candidate for a 6-month Contract-To-Hire position. JOB DESCRIPTION Reporting to the Security Operations Manager, the Senior Cyber Security Analyst is responsible for deployment and management of security operations tools and platforms with focus on cloud native or third-party cloud...

  • Senior Technology Risk Analyst

    1 month ago

    Jersey City, United States Brown Brothers Harriman Full time

    At BBH we value diverse backgrounds, so if your experience looks a little different from what we've outlined and you think you can bring value to the role, we will still welcome your application! What You Can Expect At BBH: If you join BBH you will find a collaborative environment that enables you to step outside your role to add value wherever you can. You...

  • Enterprise Risk Analyst

    3 weeks ago

    Jersey City, United States Motion Recruitment Partners, LLC Full time

    Grow your career as an Enterprise Risk Analyst with an innovative global bank. Contract role with strong possibility of extension. Will require working 2-3 days onsite per week. Join one of the world's most renowned global banks and trusted brand with over 200 years of continuously evolving financial services worldwide. You will work alongside some of the...

  • Cyber Security Analyst

    4 weeks ago

    Oklahoma City, Oklahoma, United States P17 Solutions LLC Full time

    Job Title: Sr I System Security/Info Assurance AnalystJob SummaryP17 Solutions LLC is seeking a highly skilled Sr I System Security/Info Assurance Analyst to join our team. As a key member of our security team, you will be responsible for supporting the National Airspace System and working closely with the FAA Tech Ops team to modernize sustainment and...

  • Senior Technology Risk Analyst

    4 weeks ago

    Jersey City, New Jersey, United States Brown Brothers Harriman Full time

    About the RoleBrown Brothers Harriman is seeking a highly skilled Sr. Technology Risk Analyst to join our Cyber & Technology Risk Management team. As a key member of our Enterprise Risk Management group, you will play a critical role in driving risk management through control analysis and risk assessments for the Systems organization.Key ResponsibilitiesRisk...

  • Cyber Operations Analyst

    3 weeks ago

    Panama City, Florida, United States ARA Full time

    Cyber Operations Analyst Job DescriptionWe are seeking a highly skilled Cyber Operations Analyst to join our team at Applied Research Associates, Inc. (ARA). As a Cyber Operations Analyst, you will play a critical role in assisting the US Army's Construction Engineering Research Laboratory (CERL) with various RDT&E projects.Key Responsibilities:Provide...

  • Risk and Controls Analyst

    4 weeks ago

    Carrollton, TX, United States Crescent Bank Full time

    Crescent Bank is looking for a talented professional to fill an open position as an Enterprise Risk Management (Second Line of Defense) Risk and Controls Analyst. The Risk and Controls Analyst plays a crucial role in safeguarding against cyber threats and ensuring compliance with industry and regulatory standards, and is responsible for developing and...

  • Risk and Controls Analyst

    4 weeks ago

    Carrollton, TX, United States Crescent Bank Full time

    Crescent Bank is looking for a talented professional to fill an open position as an Enterprise Risk Management (Second Line of Defense) Risk and Controls Analyst. The Risk and Controls Analyst plays a crucial role in safeguarding against cyber threats and ensuring compliance with industry and regulatory standards, and is responsible for developing and...

  • Cyber Threat Analyst

    2 weeks ago

    Honolulu, HI, United States Alaka`ina Foundation Family of Companies Full time

    Job BriefMake sure to read the full description below, and please apply immediately if you are confident you meet all the requirements.Sign-on and relocation expenses negotiableThe Alaka`ina Foundation Family of Companies (FOCs) is looking for a Cyber Threat Analyst to support our government customer located in Honolulu, Hawai'i.DESCRIPTION OF...

  • Cyber Threat Analyst

    4 weeks ago

    Honolulu, HI, United States Alaka`ina Foundation Family of Companies Full time

    Job BriefSign-on and relocation expenses negotiableThe Alaka`ina Foundation Family of Companies (FOCs) is looking for a Cyber Threat Analyst to support our government customer located in Honolulu, Hawai'i.DESCRIPTION OF RESPONSIBILITIES:Develop and distribute content provided by security platform vendors at least weekly and as needed.Develop and distribute...

  • Cyber Threat Analyst

    2 weeks ago

    Honolulu, HI, United States Alaka`ina Foundation Family of Companies Full time

    Job BriefRead the overview of this opportunity to understand what skills, including and relevant soft skills and software package proficiencies, are required.Sign-on and relocation expenses negotiableThe Alaka`ina Foundation Family of Companies (FOCs) is looking for a Cyber Threat Analyst to support our government customer located in Honolulu,...

  • Governance Risk

    2 weeks ago

    Merrifield, VA, United States INSPYR Solutions Full time

    Title: Governance Risk & Compliance Risk AnalystLocation: Merrifield, VA (Hybird)Duration: Initial 6 Month ContractCompensation: $55-82/HRWork Requirements: US Citizen, GC Holders or Authorized to Work in theResponsibilities include:

  • Sr. Analyst, Cyber Training and Communications

    2 weeks ago

    Richmond, VA, United States Constellation Energy Full time

    WHO WE AREAs the nation's largest producer of clean, carbon-free energy, Constellation is focused on our purpose: accelerating the transition to a carbon-free future. We have been the leader in clean energy production for more than a decade, and we are cultivating a workplace where our employees can grow, thrive, and contribute. Our culture and employee...

  • Cyber Operations Analyst

    3 days ago

    Panama City, Florida, United States ARA Full time

    The Engineering Science Division (ESD) of Applied Research Associates, Inc. (ARA) is seeking a highly skilled Cyber Operations Analyst to assist the US Army's Construction Engineering Research Laboratory (CERL) with various RDT&E projects.This position is located in a remote work environment, allowing the right candidate to work from anywhere.As a Cyber...

  • VP, IT Security

    2 days ago

    Dover, NJ, United States TEKsystems Full time

    TEKsystems client is seeking a VP of Information Security responsible for leading the information security, risk management, crisis planning, and crisis response functions within the Information Technology department. In the role, you will develop and execute short-term plans and longer-range strategies to mitigate cyber risk by leveraging program maturity...

  • Cyber Triage Analyst

    3 weeks ago

    Stafford, VA, United States Booz Allen Full time

    Cyber Triage AnalystThe Opportunity:As a Cyber Triage Analyst on our team, you’ll support a Department of Defense (DoD) client and be responsible for reviewing and vetting security vulnerability reports submitted to the organization from independent security researchers. You will be responsible for verifying the validity and scope of the reported...

  • Enterprise Risk Management Specialist

    2 weeks ago

    Jersey City, New Jersey, United States Motion Recruitment Partners, LLC Full time

    Enterprise Risk Analyst Job DescriptionGrow your career as an Enterprise Risk Analyst with a leading global bank. This contract role offers a strong possibility of extension and requires working 2-3 days onsite per week.About the RoleAs an Enterprise Risk Analyst, you will work closely with the Product Owner to support the ERM Risk Management portal...

  • Enterprise Risk Manager

    1 week ago

    new york city, United States 3PRO Full time

    Job Title: Enterprise Risk Management Analyst - ReinsuranceEmployment Type: Full-timeStart Date: 10/9/2024Salary: NegotiableIndustry: ReinsuranceClient: ConfidentialLocation: New York, New York, United StatesWorkplace type: Hybrid (4 days in the office, 1 day remote) Job Description: Our client is seeking an Enterprise Risk Management Analyst for the...

Sr. Enterprise Cyber Risk Mgmt Analyst, Progression

2 months ago

Ybor City FL United States Teco Energy Full time
POWER UP A CAREER WITH US
Our people are our greatest investments.

Be the light to help us keep our customers connected. If you are interested in a career and not just a position, Tampa Electric is the place to be Tampa Electric offers competitive pay, a comprehensive benefits package and opportunities for growth and development in a friendly and professional work environment. We embrace diversity and the inclusion of all. We believe our differences, unique perspectives and talents are our strengths and integral to the success of our company.

We’re honored to serve approximately 780,000 customers across West Central Florida and safely provide them with clean, affordable and reliable electricity. We’ve been doing it for more than 100 years, and there’s so much more ahead.

Join our team of energy experts as we build on that legacy through innovation, continued solar investments, cost-effective and sustainable energy solutions all while keeping top-notch customer service at the center of all we do.
Power up a career with us. Our people are our greatest investments.

Be the light to help us keep our customers connected. If you are interested in a career and not just a position, Tampa Electric is the place to be Tampa Electric offers competitive pay, a comprehensive benefits package and opportunities for growth and development in a friendly and professional work environment. We embrace diversity and the inclusion of all. We believe our differences, unique perspectives and talents are our strengths and integral to the success of our company.

We’re honored to serve approximately 780,000 customers across West Central Florida and safely provide them with clean, affordable and reliable electricity. We’ve been doing it for more than 100 years, and there’s so much more ahead.

Join our team of energy experts as we build on that legacy through innovation, continued solar investments, cost-effective and sustainable energy solutions all while keeping top-notch customer service at the center of all we do.

Tampa Electric is a subsidiary of Emera Inc., a family of energy companies which also includes TECO Peoples Gas and New Mexico Gas Company. Emera provides energy to residential and commercial customers in the United States, Canada, and the Caribbean, with career opportunities available in all of these locations.

TITLE: Sr. Enterprise Cyber Risk Management Analyst, Progression
PERFORMANCE COACH: Enterprise Cyber Risk Management Lead
COMPANY: Tampa Electric
DEPARTMENT: Information Security
JOB FAMILY: Information Technology

POSITION CONCEPT
The Enterprise Cyber Risk Management Analyst is a solution orientated problem-solver with demonstrated knowledge of Information Security best practices. Ensures the integrity of the company’s information resources at the network, operating system, and application levels. Incorporates elements of the Enterprise Cyber Risk Management Framework, aligning with industry best practices and the organization's risk tolerance. Contributes to fostering a cyber risk-aware culture and protecting assets from evolving cyber threats. Analyzes risk, establishes appropriate security controls and responds to potential threats. Delivers support in a team setting, contributing to the systematic approach to cyber risk management to identify TECO's needs regarding information security requirements and the management of systems dedicated to monitoring and safeguarding enterprise assets. Performs cyber risk management activities and provides a methodology when performing risk analysis and risk evaluation.

Please note that this position can be hired at any level within the job family progression, based on Education and years of experience.

Enterprise Cyber Risk Management Analyst

PRIMARY DUTIES AND RESPONSIBILITIES
1. Responsible for the Identification of Risks on an ongoing effort to identify actions or conditions that can have adverse impacts on continuity of business or the cyber security of TECO. Responsible for the Classification and Prioritization of Risks, an ongoing analysis of the probability and impact associated with risks along with timeframes, where applicable, and their prioritization relative to other identified risks. Assist with Risk Mitigation decisions, actions, implementations, controls, or other activities that reduce the likelihood of a risk being realized, reduce the impact of the risk if realized, or improve TECO’s response time and efficacy. 25%

2. Assist with the Oversight and Review of risks, their current probability and impact assessments, associated mitigation plans, and status of corrective measures currently underway or already undertaken along with efficacy review, where applicable, and finally a review of changing prioritization of said risks. Participate in developing and updating risk-related policies and procedures to align with industry standards and best practices. 25%

3. Utilize risk assessment tools and technologies for effective threat identification and analysis. Regularly report risk findings to relevant stakeholders, including creating detailed risk assessment reports and presentations for management. Maintain a strong working relationship with individuals and groups involved in managing information risks across the organization. 25%

4. Participate in projects to recommend risk reduction. Exchange knowledge and information with other TECO facilities to ensure best practices are shared throughout the TECO organization. Partner and collaborate with other functional teams in support of cyber risk processes. 25%

QUALIFICATIONS
Education
Required: Bachelor’s Degree in Computer Science, Information Systems or other Information Technology related field.

In lieu of Bachelors degree, an additional 4 years of related Information Technology experience may be considered.

Licenses/Certifications
Preferred: CISSP, ITILv3, and two related Information Technology Security professional or vendor certifications (ex: CEH, CSSA, GIAC, etc.)

EXPERIENCE

Required: 4 years of practical technical experience in an Information Technology role, Information Systems Audit role, or Information Security role.

Knowledge/Skills/Abilities (KSA)

Required:
• Knowledge of Internet protocols, communication protocols, data and network security, and network monitoring tools. Knowledge of encryption technologies and techniques (certificates, PKI, Data Loss Prevention, multi factor authentication) and best practices. Knowledge of various Operating system and Database security hardening controls and best practices. A solid understanding of fundamental principles of cybersecurity, including threat landscape, vulnerabilities, and risk management. Familiarity with relevant security standards and frameworks such as NIST Special Publication 800-53, ISO 27001, and others depending on the industry. Knowledge of applicable laws and regulations governing information security, privacy, and data protection. Understanding of information technology systems, network architecture, and common technologies to assess security controls effectively. Knowledge of security control frameworks and their implementation, including access controls, encryption, and incident response. Knowledge of advanced cybersecurity tools and platforms, such as SIEM, IDS/IPS, endpoint protection, and threat intelligence solutions, for effective risk analysis and mitigation.
• Proficiency in control testing to assess the effectiveness of security controls, including designing and executing test procedures to evaluate control performance against established criteria and standards. Ability to conduct comprehensive risk assessments, identifying and analyzing security risks to information systems. Technical skills to assess security controls, perform vulnerability assessments, and understand the technical aspects of security implementations. Strong communication skills to effectively convey assessment findings, risks, and recommendations to technical and non-technical stakeholders.
• Ability to determine security requirements by evaluating business strategies and requirements; researching information security standards; studying architecture/platform; and identifying integration issues. Ability to create clear and detailed documentation, including assessment plans, reports, and recommendations. Critical thinking and problem-solving skills to analyze complex security issues and recommend appropriate solutions. Keen eye for detail to identify vulnerabilities, weaknesses, and discrepancies in security controls and documentation. Ability to adapt to evolving cybersecurity threats, technologies, and regulatory requirements.
• Adherence to ethical standards and professionalism, as SCAs often have access to sensitive information and play a critical role in maintaining the integrity of security assessments. Collaboration with various stakeholders, including system owners, security teams, and management, to ensure a comprehensive understanding of the information system and its security controls. Commitment to continuous learning and staying updated on the latest developments in cybersecurity, technology, and regulatory landscapes.

Enterprise Cyber Risk Management Analyst Sr

POSITION CONCEPT:
The Enterprise Cyber Risk Management Analyst Sr serves as Information Security and Cyber Risk Management subject matter expert. Provides recommendations for additional security solutions or enhancements. Mentor and provide expert level security guidance and support to junior team members. Assumes a role in the implementation of the Enterprise Cyber Risk Management Framework which adheres to industry best practices and aligns with the organization's risk tolerance. Help protect assets from evolving cyber threats, stay in compliance with regulatory mandates, and foster a cyber risk aware culture. Collaborates with business units on cybersecurity, privacy, protection, and resilience of company assets, technology, and information. Ensures that the outcome of the risk assessment, risk treatment, and management plans remain relevant and appropriate to the circumstances, by using their extensive technical expertise and industry experience. Helps the business identify appropriate security solutions based on risk minimization and risk tolerance. Proposes technologies in sync with industry regulatory requirements, anticipated trends, and corporate business plans to accomplish company goals and strategies. Delivers support in a team setting, contributing to the systematic approach to cyber risk management to identify TECO's needs regarding information security requirements and the management of systems dedicated to monitoring and safeguarding enterprise assets. Performing cyber risk management activities and providing a methodology when performing risk analysis and risk evaluation.

QUALIFICATIONS
Education
Required: Bachelor’s Degree in Computer Science, Information Systems or other Information Technology related field.

In lieu of Bachelors degree, an additional 4 years of related Information Technology experience may be considered.

Licenses/Certifications

Required: Certified Information Systems Security Professional (CISSP) and Information Technology Infrastructure Library (ITIL) certification.*

EXPERIENCE

Related Experience

Required: 7 years of practical technical experience in an Information Technology role, Information Systems Audit role, or Information Security role.

#LI-SAC

TECO offers a competitive Benefits package

Competitive Salary *401k Savings plan w/ company matching * Pension plan * Paid time off* Paid Holiday time * Medical, Prescription Drug, & Dental Coverage *Tuition Assistance Program * Employee Assistance Program * Wellness Programs * On-site Fitness Centers * Bonus Plan and more