Senior Analyst - Cybersecurity Risk Management
As a leading global contract research organization (CRO) with a passion for scientific rigor and decades of clinical development experience, Fortrea provides pharmaceutical, biotechnology, and medical device customers a wide range of clinical development, patient access, and technology solutions across more than 20 therapeutic areas. Conducting operations in more than 90 countries, Fortrea is transforming drug and device development for partners and patients across the globe.
As a Senior Analyst, Cybersecurity Risk Management you will help build, maintain, and manage Fortrea’ s cyber risk management program. You will play a pivotal role in enhancing the cyber risk management framework and mitigation of cyber risks across the organization. You will also get involved in
- party vendor risk assessments, collaborate with
- functional teams, vendors, and work with offshore partners, oversee audits of
- party vendors.
Responsibilities include, but are not limited to:
Establish a cybersecurity risk management program designed to identify, report, and respond to cyber security risks in accordance with industry standards and frameworks, (NIST Cybersecurity Framework, NIST 800-37, ISO/IEC 27001) and regulations (SOX, GDPR, HIPAA)
Own and drive requirements for cybersecurity risk management tools.
Identify, assess, and prioritize cybersecurity risks, and potential impacts on the organizations assets and systems.
Develop and implement risk mitigation strategies and controls to reduce the organizations cyber risk.
Develop and maintain metrics, risk register, reporting and action plan.
Present regular reports on the organization’s cybersecurity risk posture to stakeholders.
Manage the cyber risk register and ensure alignment with enterprise risk management.
Align with enterprise risk management to manage the cyber risk register.
Stay updated on the latest changes in security trend, threats, and regulatory changes.
Third-party Cyber Security Risk Management:
Evaluate and assess cybersecurity risks associated with
- party suppliers and service providers to ensure they meet the organizations security standards.
Collaborate with
- functional teams to develop and implement risk mitigation strategies and controls.
Develop and maintain documentation related to third party risk assessments and action plans.
Qualifications:
Bachelor’s degree in in Computer Science, cybersecurity, or related field
Experience:
Experience in cybersecurity risk management
Solid understanding of cybersecurity policies, standards, and controls
Experience and solid understanding of industry standards (NIST Cybersecurity Framework, NIST RMF and ISO/IEC 27001 etc. ), and regulatory standards such as (HIPAA, SOX, GDPR, SOC2, PCI
etc. )
Experience with control testing and validation (e. g. NIST 800-53 etc. )
Experience developing cybersecurity metrics and reporting involving various areas and stakeholders
Experience with implementing risk management processes, risk register within enterprise GRC management platforms (e. g. , Service
Now, One
Trust)
Ability to think strategically, innovatively, and execute effectively
Proven experience in collaborating across various IT and business domains
Preferred Qualifications Include:
CISSP or CRISC or similar preferred or willingness to achieve certification
Experience working in a health authority regulated environment
Experience leading or working with offshore team
#LI-Remote
#Futureof
Tech
#LI-SK2
Fortrea is actively seeking motivated
- solvers and creative thinkers who share our passion for overcoming barriers in clinical trials. Our unwavering commitment is to revolutionize the development process, ensuring the swift delivery of
- changing ideas and therapies to patients in need. Join our exceptional team and embrace a collaborative workspace where personal growth is nurtured, enabling you to make a meaningful global impact.
Fii primul, care se va înregistra la oferta de muncă respectivă!
-
De ce să cauți de muncă pe Lucrezi.ro?
Alertă job![]()
În fiecare zi oferte noi de muncă ![]()
Puteți alege dintr-o gamă largă de locuri de muncă: Scopul nostru este de a oferi o gamă cât mai largă de opțiuni ![]()
Lasă să-ți fie trimise noile oferte prin e-mail ![]()
Fii primul care răspunde la noile oferte de muncă ![]()
Toate ofertele de muncă într-un singur loc (de la angajatori, agenții și alte portaluri) ![]()
Toate serviciile pentru persoanele aflate în căutarea unui loc de muncă sunt gratuite ![]()
Vă vom ajuta să găsiți un nou loc de muncă
