Cyber Security Analyst

6 Month Contract

Irving, TX (hybrid)

We have an immediate job opening for a Cyber Security Analyst specializing in Mergers and Acquisitions (M&A). You will be at the forefront of ensuring the security and integrity of our organization's assets during integration processes. This role requires a hands-on approach, working closely with infrastructure and business teams to assess, mitigate, and manage cyber risks associated with M&A activities. Your familiarity with cybersecurity frameworks and governance will be essential in implementing effective security measures and aligning them with organizational objectives.

Key Responsibilities:

M&A Due Diligence:

• Conduct comprehensive cybersecurity assessments of potential acquisition targets, evaluating their adherence to cybersecurity frameworks such as NIST, ISO 27001, SOC2 or CIS Controls.
• Identify and analyze security risks and vulnerabilities within target organizations' IT infrastructure, applications, and data assets.
• Collaborate with cross-functional teams to assess the potential impact of cybersecurity risks on business operations and objectives.

Integration Support:

• Work closely with infrastructure teams to develop and implement security enhancements during the integration of acquired entities.
• Assist in the design and deployment of security controls and technologies to protect against potential threats and breaches.
• Engage with business units to ensure the seamless integration of security measures into existing processes and workflows.

Governance and Compliance:

• Ensure compliance with relevant cybersecurity regulations, industry standards, and internal policies throughout the M&A process.
• Assist in the development and implementation of cybersecurity governance frameworks, policies, and procedures.
• Provide guidance and support to business and IT teams on adherence to cybersecurity governance requirements and best practices.

Risk Management:

• Assess and prioritize cybersecurity risks associated with M&A activities, taking into account technical vulnerabilities and business impact.
• Develop risk mitigation strategies and action plans in collaboration with stakeholders, implementing controls to reduce exposure to cyber threats.
• Monitor and track the effectiveness of risk mitigation measures, adjusting strategies as needed to address emerging threats and vulnerabilities.

Incident Response:

• Participate in incident response activities related to cybersecurity incidents affecting acquired entities, including detection, analysis, and containment.
• Collaborate with incident response teams to investigate security breaches, assess their impact, and coordinate remediation efforts.
• Document incident response procedures and lessons learned to improve incident handling processes and enhance cyber resilience.

Qualifications:

• 3-5 years of experience in cybersecurity, with a focus on M&A due diligence, integration, and risk management.
• Bachelor's degree in Computer Science, Information Security, or related field.
• Strong understanding of cybersecurity frameworks, governance principles, and compliance requirements.
• Proficiency in conducting security assessments, risk assessments, and vulnerability management.
• Excellent communication and collaboration skills, with the ability to work effectively with technical and non-technical stakeholders.
• Relevant certifications such as CISSP, CISM, or CISA are preferred.

**To view all of our open positions, please visit our Alleare Consulting website.