Information Risk Consultant
$67.5k - $126kSupportFinity™
Job Summary The Information Risk Consultant plays a key role in strengthening Highmark's information security posture through dedicated efforts in security governance, control assurance, and policy management. This position actively contributes to establishing and maintaining robust security controls, ensuring compliance with frameworks such as HIPAA, NIST CSF 2.0, PCI DSS, and SOC. The consultant will also assist with M&A cybersecurity integration, supporting seamless alignment of security requirements during pre- and post‑acquisition phases. This role involves interpreting complex regulatory and contractual obligations, collaborating with team members, and partnering with cross‑functional stakeholders to deliver governance excellence and contribute to reporting. Essential Responsibilities Conduct Information Risk Assessments as assigned to the team. Request and analyze documentation necessary to perform appropriate assessment and conduct necessary interviews in order to collect and review relevant materials necessary to produce results of the assessment. Clearly and concisely document and communicate risk assessment results with requestor, security architects and management, as appropriate. Conduct and formulate appropriate risk scoring, as it relates to threat, vulnerability, likelihood, impact, security controls/counter‑measures, etc. Understand and contribute to inventory of risk register tracking, scoring and associated risk statements. Perform follow‑up activities related to exceptions, risk acceptance, corrective action plans and additional mitigation activities. Communicate risk treatment methodology; risk avoidance, risk acceptance, risk transference and risk mitigation to appropriate groups. Partner with multiple projects and initiatives to apply security architecture requirements, develop architecture solutions, integrate security into solution designs, assess risks of security gaps, and develop architecture remediation. Assist HM Health Solutions teams in developing and maintaining appropriate procedural documentation which meets relevant compliance standards, such as Payment Card Industry – Data Security Standards (PCI‑DSS), Health Information Trust Alliance (HITRUST), and International Organization for Standardization (ISO) 27001. Prepare and present solution decks to different levels of management and varying technical experience. Begin to take lead role in assuring compliance to required standards, procedures, guidelines and processes. Other duties as assigned or requested. Required Education Bachelor's Degree – Information Security, Information Systems, Information Assurance, Computer Science or related field Preferred Education Master’s Degree – Computer Science, Information Security or related field Minimum Experience 3 – 5 years' experience in Information Security and/or Information Risk Management and/or Information Technology 1 – 3 years' experience within Information Security Governance, Risk and/or Compliance functions and activities 1 – 3 years’ experience developing, communicating and presenting Information Security and Risk Management concepts to varying audiences Familiarity with technologies such as intrusion Prevention Systems (IPS), firewalls, endpoint protection, web/email filtering, Data Loss Prevention (DLP), digital rights management, encryption, Security Event and Incident Management (SEIM), and virtualization platforms. Preferred Experience 5 – 7 years' experience in Information Security and/or Information Risk Management including Demonstrated ability to contribute to policy lifecycle management, ensuring timely updates and alignment with HIPAA, NIST CSF 2.0, and other authoritative source requirements. Experience assisting with control assurance and maturity improvement initiatives, with a focus on remediating gaps and strengthening the cybersecurity posture. Strong background in interpreting and applying security policies, standards, and regulatory requirements within complex business and technical environments. Experience supporting cybersecurity governance activities, including coordinating cross‑functional forums and contributing to dashboards and narratives for decision‑making. Familiarity with governance tools and platforms such as RSA Archer (GRC) and policy management systems. Knowledge, Skills & Abilities Knowledge of HITRUST CSF, NIST 800‑83 cyber security framework, PCI, HIPAA, HITECH, COBIT, ISO 27001/2, and ITIL 3 Knowledge of NIST Risk Assessment methodology Familiarity with secure SDLC best practices Knowledge of OCTAVE or OCTAVE Allegro risk methodology Ability to work within high performance, multi‑discipline teams Strong teamwork and interpersonal skills Licensure Required: None Preferred: Industry certifications such as Security+, GSEC, CySA+, or working towards CISSP, CISM, CISA, or SANS certifications. Travel Requirement 0%–25% Language Requirement None EEO Statement Highmark Health and its affiliates prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities and prohibit discrimination against all individuals based on any category protected by applicable federal, state, or local law. Pay Range $67,500.00 – $126,000.00 #J-18808-Ljbffr SupportFinity™
- Description Senior Information Assurance (IA) Analyst Location: Fort Meade MD Clearance required: Secret Clearance Candidate Clearance:... ...the design and operational effectiveness, determine exposure to risk and develop remediation strategies for System Administrator (SA...Suggested
- ...highest standards of ethical and moral character. This posting will be used to fill fulltime, permanent, safety-sensitive, Real Time Information Center Public Safety Analyst (Public Safety Analyst) position(s). The Real Tiime Information Center is a continuous 24 hour/365-...SuggestedPermanent employmentFull timeWork at officeFlexible hoursShift workNight shiftRotating shift
$70k - $85k
Risk Adjustment Coding Specialist II - Maryland Department: Quality - Risk Adjustment Employment Type: Full Time Location: Maryland... ...for all IPAs managed by the company Review medical record information on both a retroactive and prospective basis to identify, assess...SuggestedFull timeWork at officeRemote work$70k - $85k
Overview Department: Quality - Risk Adjustment Employment Type: Full Time Location: Maryland, USA Reporting To: Didi Lawter Compensation... ...for all IPAs managed by the company Review medical record information on both a retroactive and prospective basis to identify, assess...SuggestedFull timeWork at officeWork from homeMonday to Friday$75k - $160k
## Insider Risk Specialist, Insider Threat ProgramApplyremote type: Hybridlocations: Bethesda, MD: Palo Alto, CA: Dallas, TX: Seattle... ...by adopting a unified, proactive strategy, safeguarding information, systems, and mission environments through integrated security...SuggestedHourly payWork experience placementLocal areaFlexible hours- Crisis24 Group, located in Maryland, is hiring an Associate Consultant. This role involves supporting a dynamic consulting team with bespoke reporting and threat assessments, working on varied tasks that enhance professional development. The ideal candidate will have a...Remote jobOverseas
$75k - $250k
...validation and accreditation processes necessary to assure that new information technology (IT) systems meet the organization’s information... ...IA) and security requirements. Ensure appropriate treatment of risk, compliance, and assurance from internal and external...Full timeContract workWork experience placementImmediate start- Itezz, Inc. seeks an Information Assurance Analyst to oversee documentation and security for IT systems. Candidates should have a minimum... ...security clearance with an appropriate polygraph. The role emphasizes risk management, compliance, and ensuring IT systems adhere to...
$77k - $172k
...Overview Saalex Corporation is seeking a Senior Information Security Analyst in Saint Inigoes, MD . Saalex is an Engineering and Information... ...and information. Assess system vulnerabilities for security risks and propose and implement risk mitigation strategies. May ensure...Full timeTemporary workInterim roleWork at officeRemote work2 days per week$110k - $150k
...Job Title: Information Systems Security Analyst Company: Altus Engineering Location: Aberdeen Proving Ground, MD Salary: $110,000-150,0... ...cybersecurity requirements for JTCG/ME efforts and programs are met. Consult and support (Development, Security, Operation) DevSecOps...Work at office- ...citizenship. This role is remote. The Risk, Quality, and Performance Analyst... ...contract. Maximus TCS (Technology and Consulting Services) Internal Job Profile Code: TCS... ...citizenship. - Bachelor’s degree in Business, Information Systems, Computer Science, Engineering,...Minimum wageFull timeContract workTemporary workWork experience placementRemote work
$117.2k - $176.7k
...stakeholder organizations creating synergies and reducing risk of non‑compliance with internal or external... ..., adoption of AI, and security documentation Consult with business or security stakeholders on information security requirements and applicability to their business...$34.66 per hour
Job Title: Information Security Analyst Job Category: Service Contract Act Time Type: Full time Minimum Clearance Required to Start: TS... ...networks and information. Assess system vulnerabilities for security risks and propose and implement risk mitigation strategies. May...Hourly payMinimum wageFull timeContract workFor contractorsWork experience placementLocal areaFlexible hours$54.07k - $86.51k
JOB SUMMARY: The Information Security Analyst plays a key supporting role in the college’s cybersecurity operations. Under the guidance of... ...EDR/MDR platform, email filtering rules, and the institutional risk register. This role also works closely with the Endpoint Management...Full timeTemporary workWork at officeLocal areaRemote workWeekend workAfternoon shift1 day per week- CACI International Inc seeks an Information Security Analyst in Maryland to implement and monitor security measures for networks. Candidates... ...strong background in assessing vulnerabilities and mitigating risks. The role requires a minimum of 3 years of experience and a TS/...Flexible hours
- CACI International Inc. is seeking an Information Security Analyst III in Maryland to safeguard computer networks and data. This role requires extensive experience in security review and risk assessment, ensuring the implementation of effective security measures for critical...
- Salesforce.com, inc. is looking for an experienced information security professional to support their Government Cloud Division in the U.S... ...communication and relationship-building skills. You will manage compliance risks and work closely with federal authorization bodies. The ideal...
- CACI International Inc is seeking an Information Security Analyst III to enhance the security of computer networks and data. The role involves planning, implementing, and monitoring security measures. Candidates should have 8 years of experience or relevant experience and...
- ...containment, eradication, and post-incident reviewsGovernance, Risk & Compliance (GRC)Support ongoing SOC 2 Type II compliance efforts... ...managementQualificationsRequired3-5 years of experience in an information security role with exposure to both technical operations and...
$78.9k - $123.3k
...managing the security authorization lifecycle for one or more information systems, ensuring compliance with Federal cybersecurity requirements... ...for one or more information systems in accordance with Federal Risk Management Framework (RMF) requirements. Coordinate...Permanent employmentFull timeContract workPart timeWork at officeLocal areaRemote work- General information Ref # 22169 Remote? Yes The Opportunity The Senior Actuarial Analyst is responsible for developing and supporting a robust... ...-oriented Strong work ethic Minimum of Bachelor’s degree in risk management, finance, economics, actuarial science, mathematics,...Permanent employmentWork at officeRemote workFlexible hours
$129.3k - $177.8k
...community The Actuary, Analytics/Forecasting analyzes and forecasts financial, economic, and other data to provide accurate and timely information for strategic and operational decisions. Establishes metrics, provides data analyses, and works directly to support business...Bi-weekly payFull timeTemporary workApprenticeshipWork experience placementRemote workWork from homeHome officeShift work- General information Ref # 21172 Remote? Yes Ally and Your Career Ally Financial only succeeds when its people do - and that’s more than... ...Highly motivated and self-directed Minimum of Bachelor’s degree in risk management, finance, economics, actuarial science, mathematics,...Permanent employmentWork experience placementRemote workFlexible hours
$113.16k - $161.63k
...origin, age, marital status, sexual orientation, gender identity and/or expression, disability, pregnancy, family or parental status, veteran status, genetic information, or any protected category prohibited by local, State or federal laws. #J-18808-Ljbffr State of MarylandWork at officeLocal areaFlexible hours- A leading insurance agency in Virginia is seeking a driven Risk Advisor to join its team. This role involves prospecting new business opportunities, delivering tailored risk assessments, and providing proactive client service. Ideal candidates will have an active MA Producer...Flexible hours
- ...of Openings: 1 We are seeking a driven, relationship-focused Risk Advisor to join our growing team. In this role, you will prospect... ...is more than an insurance salesperson — you’re a trusted consultant. You’ll help individuals and businesses identify potential risks...Work at officeFlexible hours
$79.2k - $88k
Primary Purpose of Position The successful candidate will be an integral part of the risk management function of Constellation. The company's wholesale power marketing and trading organization is responsible for optimizing the profitability of a growing portfolio of assets...Work at office$83k - $166.1k
...customers that will maximize Oracle’s revenue while mitigating risk. The team focuses on meeting the highest standard of compliance... ...mandates, and/or drug testing requirements. Range and benefit information provided in this posting are specific to the stated locations...Temporary workRemote workFlexible hours- ...ability to provide expert technical advice, staff coordination and consultation to foster formulating guidelines, implementing new... ...computer for extended periods of time reading, reviewing/analyzing information, and providing recommendations, summaries and/or reports in...Contract workTemporary workFor contractorsFlexible hours
$126.8k - $244k
...rising customer expectations, and evolving risks reshape how banks operate and compete.... ...analysis, industry research, management consulting or business performance, advising... ...California, please click here for additional information. EY focuses on high-ethical...Summer holidayLocal areaFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Information Risk Consultant. Be the first to apply!


