Senior IT Risk Analyst

Posting Number 2022-9653
Posted Date 2 months ago(6/20/2022 8:39 PM)
Location : Location
Cyber Risk Assessment & Forensics
NYU IT (WS1170)
Compensation Grade
Band 53

Position Summary

The Senior IT Risk Analyst reports directly to the Associate Director, IT Risk Management and supports the development of the Cyber Risk Management Program's method: which includes collecting, processing and analyzing data from technical and/or business operational areas to perform security risk assessments, reviews and consultations. The Senior IT Risk Analyst designs risk assessments, defines risk analysis methodologies, maintains a risk register, and is responsible for expanding the use of the online governance-risk-compliance platform to send questionnaires and receive responses for mapping to various regulatory requirements, to NYU policies, and, produce online executive status dashboards. The Senior IT Risk Analyst trains and guides new staff, consultants and students.


Required Education:
Bachelor's Degree

Preferred Education:
Master's Degree in Information Systems Management or equivalent.

Required Experience:
5+ years of progressive experience assessing IT Security architectures, systems and solutions across multiple information security domains. Must have experience having assessed, remediated or developed solutions that adhere to one or more of the following compliance frameworks; PCI, NIST 800-53/800-171, ISO2700x, HIPAA/HiTECH.

Preferred Experience:
Cloud Security assessments; system, application reviews including Secure SDLC lifecycle assessments.

Required Skills, Knowledge and Abilities:
• Excellent organizational and problem-solving skills. Excellent communication, leadership, interpersonal, influence and negotiation skills. Ability to build consensus and lead groups through decision making process. • Excellent team participation skills, as well as good written and verbal communication skills. Good Analytical skills, problem solving and interpersonal skills • Ability to work with other teams to implement security goals. • Required certifications with one or more of the following: CISM, CISA, CISSP, CRISC

Preferred Skills, Knowledge and Abilities:
Strongly preferred qualifications include knowledge of information security best practices in the domains of: Access Control, Network Security, Risk Management, Software Development Security, Security Architecture and Design, Operations Security Business Continuity and Disaster Recovery Planning, Compliance, Physical (Environmental) Security.

Additional Information

NYU aims to be among the greenest urban campuses in the country and carbon neutral by 2040. Learn more at

EOE/AA/Minorities/Females/Vet/Disabled/Sexual Orientation/Gender Identity


Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
Share on your newsfeed

Need help finding the right job?

We can recommend jobs specifically for you! Click here to get started.