Cyber Security - Associate
Cyber Security - Associate
Introduction
In today’s dynamic environment, business leaders face constantly shifting risks. Riveron helps organizations implement leading governance, risk and compliance practices by combining deep expertise with pragmatic partnership, using a hands-on approach to understand the specific needs of the organization and create tailored solutions to address key compliance risks.
Our Services
Our Cyber Security & Data Privacy (CSDP) services include:
- building GRC/Cybersecurity programs from the ground up
- framework readiness
- design and maintenance of critical security domains
- managed internal controls testing and monitoring
- co-sourced/outsourced internal audit
- segregation of duties and access risk review
- policy and procedure development
- enterprise risk management
- IT and cybersecurity risk assessment
Job Summary
The Associate level position for Riveron’s CSDP group will work collaboratively with senior team members who provide guidance, coaching, and direction. The role includes supporting the implementation of GRC/Cybersecurity programs, assessing the design and operating effectiveness of IT General Controls (ITGC), developing and executing remediation roadmaps, incident response, completing vendor reviews and performing IT risk assessments.
Requirements
- Bachelor's and/or Master’s degree in Information Technology (IT), Computer Information Systems (CIS), Management Information Systems (MIS), or a related field
- Relevant certification preferred, such as CompTIA Security+, CISA, AWS Cloud Practitioner
- Minimum 1 year of experience in an IT Audit, Cybersecurity Analyst or IT Risk Advisory role
- Demonstrated knowledge of compliance frameworks such as SOC 2, ISO 27001, HIPAA, PCI-DSS, NIST, FedRAMP, CMMC
- Familiarity with GRC solutions, tools, and technologies
Who You Are
- You have a passion for developing and maintaining client relationships
- You get the job done and have fun doing it
- You communicate skillfully with a variety of audiences and can create compelling stories from data
- You thrive in an ever-changing, dynamic work environment
- You readily identify problems and instinctively look for solutions
- You enjoy participating in internal and external company initiatives such as community service, training, recruiting, and firm events
What You’ll Do
- Support Senior Associates and Managers in implementing cybersecurity programs aligned with SOC 2, ISO 27001, and other security and privacy frameworks
- Conduct compliance readiness assessments and assist with external audits
- Maintain day-to-day