Cyber Security Risk Analyst

About The Position

Requirements

• Comprehensive Understanding of Cybersecurity Frameworks: Strong understanding of key cybersecurity frameworks such as NIST CSF, NIST Privacy and NIST 800-53, with the ability to apply these frameworks in both internal and third-party risk assessments.
• Expertise in Third-Party Risk Management: Proven experience in conducting thorough risk assessments of vendors and third-party service providers, evaluating their alignment with security standards and their potential impact on organizational security.
• Strong Analytical and Reporting Skills: Ability to analyze complex security data and vulnerabilities, and effectively communicate findings, risks, and recommendations in a clear, coherent, and actionable manner to both technical and non-technical stakeholders.
• Knowledge of Regulatory Compliance: An understanding of relevant legal and regulatory requirements, including SOX, PCI, GDPR, CPNI and others, ensuring all risk assessments align with any compliance obligations.
• Collaborative and Consultative Skills: Strong interpersonal skills to work collaboratively within the Cyber Security team and across departments, and the ability to serve as a cybersecurity consultant to the organization, advising on best practices for risk mitigation.
• Continuous Learning and Adaptability: A commitment to continuous professional development in the rapidly evolving field of cybersecurity and the flexibility to adapt risk assessment methodologies to emerging threats and technologies.
• Proactive Self-Management Skills: Self-motivated and directed, with strong time management and organizational skills, while able to use internal tools to research and gain institutional knowledge.

Nice To Haves

• Maintaining active CRISC certification is a plus.

Responsibilities

• Conduct Comprehensive Risk Assessments: Perform in-depth security evaluations on Uniti's internal processes and third-party vendors to identify risks, assess potential threats, and recommend mitigation strategies.
• Develop Actionable Security Reports: Translate assessment findings into clear, detailed reports that articulate risks to Uniti’s infrastructure, data, and customer trust, providing actionable insights for risk treatment and mitigation.
• Implement Security Frameworks: Apply relevant cybersecurity frameworks such as NIST CSF, NIST Privacy and NIST 800-53 in the assessment process to ensure comprehensive coverage of potential security vulnerabilities.
• Ensure Regulatory Compliance: Monitor and evaluate compliance with applicable legal and regulatory requirements (e.g., SOX, PCI, GDPR), ensuring that all risk assessments and mitigation plans adhere to these obligations.
• Utilize Security Technologies: Leverage advanced security tools and technologies for issue and threat analysis to support the risk assessment process.
• Facilitate Cross-Departmental Collaboration: Work closely with various departments within Uniti, providing cybersecurity consultation and fostering a culture of security awareness and best practices throughout the organization.
• Adheres to all Uniti and IT policies and procedures: Ensure all activities and assessments align with organizational policies and cybersecurity protocols.
• Performs other duties and responsibilities as assigned: Take on additional tasks and responsibilities that support the overall goal of enhancing Uniti’s cybersecurity posture.

Benefits

• Medical, Dental, Vision Insurance Plans
• 401K Plan
• Health & Flexible Savings Account
• Life and AD&D, Spousal Life, Child Life Insurance Plans
• Educational Assistance Plan