Cyber Risk Analyst

Overview:

As a Cyber Risk Analyst, you will play a critical role in identifying, analyzing and influencing the management of information risks across the organization. 

Starting base pay for this role is between $97,000 and $122,000. The actual base pay is dependent upon many factors, such as transferable skills, work experience, business needs, training, location, and market demands. The base pay range is subject to change and may be modified in the future. This role will be eligible for a bonus as well as competitive medical, dental, and vision benefits, wellness reimbursement, life insurance, and a 401(k) with company match. We offer vacation and sick leave benefits (under a flexible time off policy in most states). 

• Identifies potential risks that could impact the organization and evaluate the severity and likelihood of these risks. 

• Assesses the potential impact of cybersecurity risks on critical business processes and functions. 

• Aligns cybersecurity risk management with overall business objectives. Understands the organization's strategic goals and ensures that cybersecurity measures are integrated seamlessly. 

• Works with stakeholders to communicate business risk and risk mediation in accordance with agreed protection levels. 

• Performs risk analysis (e.g., business impact, and probability of occurrence) whenever an application or system undergoes a major change. 

• Builds remediation plans for business risks identified during risk assessments, audits, inspections, etc. 

• Develops strategies to minimize or control risks. 

• Implements approved risk management programs. 

• Prepares detailed reports on risk assessments and mitigation strategies. 

• Develops and updates risk management policies and procedures. 

• Ensures compliance with regulatory requirements. 

• Other duties as assigned. 

• Bachelor’s degree or equivalent experience. 

• 5+ years of experience in information security with a focus on IT audit and/or enterprise risk management (ERM) role. 

• Proficiency in risk management software and tools. 

• Strong analytical and problem-solving skills. 

• Excellent verbal and written communication skills 

• Excellent team player. 

• Preferred: Experience with ISO 27001, NIST 800-53, and SSAE 18/SOC audits.  

• Preferred: Relevant security or security audit and compliance certifications (i.e., Security+, CISA, CRISC, CISSP). 

Origami Risk provides integrated SaaS solutions to organizations across the risk and insurance ecosystem — from insured corporate and public entities to brokers and risk consultants, insurers, third party claims administrators (TPAs), and risk pools. We deliver our risk management and insurance core system solutions from a cloud-based platform that is highly configurable, completely scalable, and accessible via web browser and mobile app. 

Dais Technology, a subsidiary of Origami Risk, provides a no-code platform that revolutionizes insurance product creation for MGAs, insurers, and reinsurers. Dais’ event-based architecture enables AI-driven bundling, automation, and real-time deployment. 

Solutions from Origami Risk and Dais Technology are backed by a best-in-class service team of experienced risk and insurance professionals who possess a balance of industry knowledge and technological expertise. A singular focus on helping clients achieve their business objectives underlies our approach to developing, implementing, and supporting our risk management, safety, compliance, and insurance core system technology solutions. 

Caution: Be alert to recruiting scams. We have received reports of individuals impersonating Origami Risk recruiters to deceive candidates into disclosing personal information. These impostors use fake Origami Risk domain names and email addresses. Please double-check that any email address from an Origami Risk recruiter ends with origamirisk.com or talent.icims.com. And to confirm the legitimacy of any recruiting communication, l feel free to email transparencycheck@origamirisk.com.