Sr Info Security Risk Analyst
4 weeks ago
Description
Sr Info Security Analyst
Syneos Health is a leading fully integrated biopharmaceutical solutions organization built to accelerate customer success. We translate unique clinical, medical affairs and commercial insights into outcomes to address modern market realities.
Every day we perform better because of how we work together, as one team, each the best at what we do. We bring a wide range of talented experts together across a wide range of business-critical services that support our business. Every role within Corporate is vital to furthering our vision of Shortening the Distance from Lab to Life.
Discover what our 29,000 employees, across 110 countries already know:
WORK HERE MATTERS EVERYWHERE
Why Syneos Health
- We are passionate about developing our people, through career development and progression; supportive and engaged line management; technical and therapeutic area training; peer recognition and total rewards program.
- We are committed to our Total Self culture - where you can authentically be yourself. Our Total Self culture is what unites us globally, and we are dedicated to taking care of our people.
- We are continuously building the company we all want to work for and our customers want to work with. Why? Because when we bring together diversity of thoughts, backgrounds, cultures, and perspectives - we're able to create a place where everyone feels like they belong.
Job Summary
Core to Syneos Health, we drive governance of policies and standards, identify, manage cybersecurity-related risks, and provide assurance to stakeholders. The successful candidate will participate in the information security risk management program to reduce the risks to the level that is acceptable to the organization. The candidate will possess deep knowledge of security control frameworks, stay abreast of the evolving threat landscape, and have past experience working in a cybersecurity risk management, and/or audit environment. They will cooperate with various internal and external stakeholders to ensure that Syneos Health and its third parties meet or exceed internal and external cybersecurity and legal requirements. This role requires a good understanding of information security principles, risk assessment methodologies, and industry best practices.
In addition to the job responsibilities below, this role understands and adapts to an ever-changing cybersecurity risk landscape and helps to evolve Syneos Health's cybersecurity program to meet and address these challenges.
Job Responsibilities:
* Serves as a senior member of the working team for Risk Management within the Governance, Risk, and Assurance (GRA) function.
* Conducts information security risk assessments of IT solutions (third-party and internally developed) and internal processes.
* Assesses information security risks of changes to existing IT solutions.
* Identifies, analyzes, assesses, monitors, and tracks risks in the information security risk register.
* Monitors and tracks risk mitigations to ensure cyber security policies and standards are established, implemented and followed.
* Collaborates with cross-functional teams to ensure risk management practices and IT solutions align with business objectives and compliance requirements.
* Utilizes tools from various processes (e.g. vulnerability management, anti-virus, Secure SDLC, etc.) to verify the presence of risks.
* Periodically reports to internal stakeholders on overall IT solutions risk profile.
* Conducts Information Security Risk Assessment program improvements based on legal, stakeholder, and best practice requirements.
* Collaborates with internal stakeholders (Security Operations, Technology Solutions, Governance, Risk and Assurance, Privacy, Regulatory & Compliance, etc.) and third parties as part of the risk management program.
* Participates in ad-hoc, non-systematic risk assessment requests.
* Stay updated with the latest cybersecurity trends, emerging threats, and industry developments to provide proactive risk mitigation recommendations.
AtSyneos Health, we believe in providing an environment and culture in which Our People can thrive, develop and advance. We reward and recognize our people by providing valuable benefits and a quality-of-life balance. The benefits for this position include a company car or car allowance, Health benefits to include Medical, Dental and Vision, Company match 401k, eligibility to participate in Employee Stock Purchase Plan, Eligibility to earn commissions/bonus based on company and individual performance, and flexible paid time off (PTO) and sick time. Because certain states and municipalities have regulated paid sick time requirements, eligibility for paid sick time may vary depending on where you work. Syneos complies with all applicable federal, state, and municipal paid sick time requirements.
The annual base salary for this position ranges from $80,000 to $99,300. The base salary range represents the anticipated low and high of the Syneos Health range for this position. Actual salary will vary based on various factors such as the candidate's qualifications, skills, competencies, and proficiency for the role.
Qualifications
QUALIFICATION REQUIREMENTS
* Bachelor's degree in computer science, Information Security, or a related field. Relevant certifications such as CISA, CRISC, or ISO 27001 auditor are highly desirable.
* Five years experience working as an Information Security Risk Analyst or in a similar role focused on information security risk management.
* Experience in utilizing tools for risk profile data collection is desirable.
* Experience in utilizing One Trust platform is desirable.
* Good knowledge of cybersecurity principles, governance and regulatory compliance.
* Deep understanding of risk assessment methodologies, vulnerability management, and security control frameworks (e.g., NIST, ISO 27001, COBIT)
* Familiarity with security controls, technologies, and best practices to mitigate cyber risks.
* Proficient in Microsoft Office (Excel, PowerPoint, Word)
* Strong communication and interpersonal skills to collaborate effectively with cross-functional teams and stakeholders.
* Excellent analytical and problem-solving skills
* Ability to work independently as well as collaboratively in a team environment, prioritize tasks, and manage time effectively.
-
Sr Info Security Risk Analyst
2 months ago
Morrisville, United States Syneos Health Careers Full timeDescription Sr Info Security Analyst Syneos Health® is a leading fully integrated biopharmaceutical solutions organization built to accelerate customer success. We translate unique clinical, medical affairs and commercial insights into outcomes to address modern market realities. Every day we perform better because of how we work together, as one team,...
-
Sr. Credit to Cash Analyst
5 months ago
Morrisville, United States Teleflex Full timePosition Summary The Sr. Credit to Cash Analyst will be responsible to manage the day-to-day collections of receivables within their global portfolio. The Sr. Analyst portfolio will include accounts in various regions such as AMERICAS, EMEA, and/or APAC. The successful candidate will demonstrate the ability to independently manage the complex accounts...
-
Cyber Security Analyst
4 weeks ago
Morrisville, United States Demo - Maximus Full timeCybersecurity Role OverviewAt Maximus, we're seeking a skilled Cyber Security Analyst to join our team in RTP, NC. As a Cyber Security Analyst, you'll play a critical role in the assessment and authorization of new or existing systems, collaborating with system owners and Subject Matter Experts (SMEs) in assessing the security posture of systems throughout...
-
Cyber Security Analyst
4 weeks ago
Morrisville, North Carolina, United States Demo - Maximus Full timeJob Summary We are seeking a highly skilled Cyber Security Analyst to join our team at Demo - Maximus. As a Cyber Security Analyst, you will play a critical role in the assessment and authorization of new or existing systems, collaborating with system owners and Subject Matter Experts (SMEs) in assessing the security posture of systems throughout the Risk...
-
Financial Risk Analyst
1 month ago
Morrisville, United States HireNetworks Full timePayments Risk Analyst – Raleigh- Durham, NCOur NC based client is seeking a Payments Risk Analyst for a hybrid opportunity in their Morrisville, NC office. Our client is a rapidly-growing private equity-backed company offering software with integrated payments to youth sports clubs and governing bodies nationwide. In this role, you'll be responsible for...
-
Security Manager, Penetration Testing
4 weeks ago
Morrisville, United States Thermo Fisher Scientific Full timeJob DescriptionAt Thermo Fisher Scientific, we're seeking a skilled Sr. Manager, Penetration Testing to join our Corporate Infrastructure & Security (CIS) team. This role is based in Frederick, Maryland or Raleigh, North Carolina.Key Responsibilities: Conduct research, testing, and validation of products and platforms throughout their development lifecycles....
-
Global Trade Analyst
3 weeks ago
Morrisville, United States The Judge Group Full timeOur client is currently seeking a Global Trade Analyst!This is a long term w2 contract to hire opportunity, requiring of onsite/hybrid work capability.4 days in office per week / 1 day remote. Position Overview: As a Global Trade Analyst, you will play a crucial role in ensuring compliance with international trade regulations, optimizing our transportation...
-
Security Education and Awareness Director
4 weeks ago
Morrisville, Pennsylvania, United States Crown Cork & Seal USA, Inc. Full timeThe Company: Crown Cork & Seal USA, Inc. is a global leader in the design, manufacture, and sale of packaging products for consumer goods. At Crown, we are passionate about helping our customers build their brands and connect with consumers around the world. We do this by delivering innovative packaging that offers significant value for brand owners,...
-
Global Information Security Training Lead
2 weeks ago
Morrisville, United States Crown Cork & Seal USA, Inc. Careers Full timeThe Company: CROWN Cork & Seal USA, Inc., a wholly owned company of Crown Holdings, Inc. is a global leader in the design, manufacture and sale of packaging products for consumer goods. At Crown, we are passionate about helping our customers build their brands and connect with consumers around the world. We do this by delivering innovative packaging that...
-
Sr. Security Engineer
3 weeks ago
Morrisville, United States DanSources Full timeThe ideal candidate will have engineering expertise as it relates to endpoint security technologies to include Antivirus: EDR/XDR, Symantec End-point Security Complete (SESC), and other industry end-point toolsets; preferably in a large organization. Requirements: Advanced experience of Windows domain, workstation platform, registry, protocols, etc. to...
-
Sr. Security Engineer
1 day ago
Morrisville, United States Dansources Technical Services Full timeJob DescriptionJob DescriptionThe ideal candidate will have engineering expertise as it relates to endpoint security technologies to include Antivirus: EDR/XDR, Symantec End-point Security Complete (SESC), and other industry end-point toolsets; preferably in a large organization.Requirements:Advanced experience of Windows domain, workstation platform,...
-
Sr BOA
1 month ago
Morrisville, United States Edward Jones Full timeWould you call yourself a relationship builder, a problem solver or a critical thinker? If you answered yes, we need you on our team.At Edward Jones, we are very intentional in calling our field associates branch teams. Most of our teams are two or three people, and in a Branch Office Support Professional role, you are a critical member of that team along...
-
Morrisville, United States Ohm Systems, Inc Full timeJob DescriptionJob DescriptionSummary:The Splunk Service Engineer is responsible for configuring and fine-tuning Splunk Core and Splunk Enterprise Security (ES) services, collaborating with CISO teams to develop advanced security use cases and actionable workflows. The role involves technical solutions design, training workshops, and supporting incident...
-
Sr BOA
4 weeks ago
Morrisville, United States Edward Jones Full timeWould you call yourself a relationship builder, a problem solver or a critical thinker? If you answered yes, we need you on our team.At Edward Jones, we are very intentional in calling our field associates branch teams. Most of our teams are two or three people, and in a Branch Office Support Professional role, you are a critical member of that team along...
-
System Security Lead
1 week ago
Morrisville, United States ECCO Select Full time***Candidates must be able to obtain a Public Trust***W2 Only, No C2CPosition Summary:The System Security Lead is responsible for safeguarding the IT infrastructure by implementing and managing security protocols, conducting vulnerability assessments, and ensuring compliance with federal security standards. This role includes monitoring security systems,...
-
Sr BOA
1 month ago
Morrisville, United States Edward Jones Full timeWould you call yourself a relationship builder, a problem solver or a critical thinker? If you answered yes, we need you on our team.At Edward Jones, we are very intentional in calling our field associates branch teams. Most of our teams are two or three people, and in a Branch Office Support Professional role, you are a critical member of that team along...
-
Sr BOA
1 month ago
Morrisville, United States Edward Jones Full timeWould you call yourself a relationship builder, a problem solver or a critical thinker? If you answered yes, we need you on our team.At Edward Jones, we are very intentional in calling our field associates branch teams. Most of our teams are two or three people, and in a Branch Office Support Professional role, you are a critical member of that team along...
-
Global Trade Analyst
2 weeks ago
Morrisville, United States The Judge Group Full timeOur client is currently seeking a Global Trade Analyst! This is a long term w2 contract to hire opportunity, requiring of onsite/hybrid work capability.4 days in office per week / 1 day remote. The Trade Analyst will be responsible for analyzing and optimizing our international trade operations. This role requires a deep understanding of logistics, supply...
-
Sr BOA
1 month ago
Morrisville, United States Edward Jones Full timeWould you call yourself a relationship builder, a problem solver or a critical thinker? If you answered yes, we need you on our team.At Edward Jones, we are very intentional in calling our field associates branch teams. Most of our teams are two or three people, and in a Branch Office Support Professional role, you are a critical member of that team along...
-
Sr BOA
1 month ago
Morrisville, United States Edward Jones Full timeWould you call yourself a relationship builder, a problem solver or a critical thinker? If you answered yes, we need you on our team.At Edward Jones, we are very intentional in calling our field associates branch teams. Most of our teams are two or three people, and in a Branch Office Support Professional role, you are a critical member of that team along...