Risk Analyst Jobs in New Jersey

Position Details

Recruitment/Posting Title Information Security Risk Analyst

Job Category Staff & Executive - Information Technology

Department OIT - Information Security

Overview

Rutgers, The State University of New Jersey, is a leading national research university and the State of New Jersey’s preeminent, comprehensive public institution of higher education. As one of the largest employers in the State of New Jersey, Rutgers University is committed not only to the students and the State that we serve, but also to the faculty and staff who work on our campuses. For two consecutive years, Rutgers is ranked on Forbes’ list of America’s Best Large Employers. Rutgers holds #64 of 500 employers and is the #1 New Jersey employer on the publication’s 2023 list. Rutgers’ commitment to its employees includes maintaining and fostering a safe, diverse, and respectful workplace environment, creating employment opportunities for our nation’s military veterans, and ensuring accessibility and accommodation for individuals with disabilities.

Posting Summary

Rutgers, The State University of New Jersey is seeking an Information Security Risk Analyst for the Office of Information Security (OIT). This position will report to the Information Security Risk Manager.

Among the key duties of this position are the following:

• Facilitates and evaluates internal and third-party information security risk assessments.
• Provides risk remediation recommendations to mitigate identified control gaps and promotes awareness of available supporting resources and technologies.
• Works closely with stakeholders across campus to ensure that risks are well documented and communicated.
• Maintains a formal risk register that supports security governance and ensures security findings are aligned with business objectives.
• Acts as an SME for the end-to-end management of findings related to information security assessments for vendors and applications.
• Assists in creating policies and procedures to help reduce risk.
• Performs other assigned tasks.

FLSA Exempt

Grade 07

Salary Details

• Minimum Salary: 108147.000
• Mid Range Salary: 136809.000
• Maximum Salary: 165471.000

The final salary offer may be determined by several factors, including, but not limited to, the candidate’s qualifications, experience, and expertise, and availability of department or grant funds to support the position. We also take into consideration market benchmarks, if and when appropriate, and internal equity to ensure fair compensation relative to the university’s broader compensation structure. We are committed to offering competitive and flexible compensation packages to attract and retain top talent.

Benefits

Rutgers provides a comprehensive benefits package to eligible employees. The specific benefits vary based on the position and may include:

• Medical, prescription drug, and dental coverage
• Paid vacation, holidays, and various leave programs
• Competitive retirement benefits, including defined contribution plans and voluntary tax-deferred savings options
• Employee and dependent educational benefits (when applicable)
• Life insurance coverage
• Employee discount programs

Position Status Full Time

Working Hours

Standard Hours 37.50

Daily Work Shift

Work Arrangement

Consistent with the current application of Rutgers Policy 60.3.22 or the applicable provisions of relevant collective negotiations agreements, this position may be eligible for a hybrid work arrangement. Flexible work arrangements are not permanent, subject to change or discontinuation, and contingent on the employee receiving approval in the FlexWork@RU Application System.

Union Description Admin Assembly (MPSC)

Payroll Designation PeopleSoft

Seniority Unit

Terms of Appointment Staff - 12 month

Position Pension Eligibility ABP

Qualifications

Minimum Education and Experience

Bachelor’s degree in Computer Science, Information Systems, Management Information Systems or a related field and a minimum of five (5) years of experience in Information Security programs.

Required Knowledge, Skills, and Abilities

- Knowledge of HIPAA, GLBA and PCI DSS regulations and frameworks such as NIST CSF.
- Excellent interpersonal, communication and influencing skills.
- Ability to collaborate effectively across a variety of disciplines and levels inside/outside the organization.
- Ability to effectively analyze, document and communicate information security concepts to different user bases, including students, faculty, staff and systems personnel.

Preferred Qualifications

- Minimum of five (5) years of experience performing information security assessments in accordance with relevant regulatory requirements.
- Demonstrated skill in conducting internal or external risk assessments and providing guidance on the implementation, monitoring, and reporting of control processes, documentation, compliance measures, and/or remediation items.
- Ability to communicate complex technical issues to diverse audiences, both orally and in writing, in a clear, authoritative, and actionable manner.
- Ability to identify and assess the severity and potential impact of risks and communicate findings effectively to risk owners.
- Knowledge of common cybersecurity frameworks and standards (e.g., NIST 800-171, ISO 27001/27002).
- Experience with Governance, Risk, and Compliance (GRC) and/or Vendor Risk Management (VRM) platforms.
- Strong interpersonal skills with the ability to work effectively with both technical and non-technical personnel at various organizational levels.
- CISSP or CRISC certification.

Equipment Utilized

Physical Demands and Work Environment

Special Conditions

Posting Details

Posting Number 26ST1322

Posting Open Date 06/16/2026

Special Instructions to Applicants

Regional Campus Rutgers University-New Brunswick

Home Location Campus Rutgers University - New Brunswick

City New Brunswick

State NJ

Location Details

Pre-employment Screenings

All offers of employment are contingent upon successful completion of all pre-employment screenings.

Immunization Requirements

Under Policy 100.3.1 Immunization Policy for Covered Individuals, if employment will commence during Flu Season, Rutgers University may require certain prospective employees to provide proof that they are vaccinated against Seasonal Influenza for the current Flu Season, unless the University has granted the individual a medical or religious exemption. Additional infection control and safety policies may apply. Prospective employees should speak with their hiring manager to determine which policies apply to the role or position for which they are applying. Failure to provide proof of vaccination for any required vaccines or obtain a medical or religious exemption from the University will result in rescission of a candidate’s offer of employment or disciplinary action up to and including termination.

Equal Employment Opportunity Statement
It is university policy to provide equal employment opportunity to all its employees and applicants for employment regardless of their race, creed, color, national origin, age, ancestry, nationality, marital or domestic partnership or civil union status, sex, pregnancy, gender identity or expression, disability status, liability for military service, protected veteran status, affectional or sexual orientation, atypical cellular or blood trait, genetic information (including the refusal to submit to genetic testing), or any other category protected by law. As an institution, we encourage all qualified applicants to apply. For additional information please see the Non-Discrimination Statement at the following web address: http://uhr.rutgers.edu/non-discrimination-statement

Supplemental Questions

Required fields are indicated with an asterisk (*).

• Do you have a Bachelor’s degree in Computer Science, Information Systems, Management Information Systems or a related field and a minimum of five (5) years of experience in Information Security programs?
• Yes
• No
• Describe your experience conducting cybersecurity risk assessments.

(Open Ended Question)

• Describe your experience with third-party/vendor risk management.

(Open Ended Question)

• Describe your experience with cybersecurity frameworks such as NIST CSF, NIST 800-53, ISO 27001, or CIS Controls.

(Open Ended Question)

• Describe your experience presenting risk findings to technical and non-technical stakeholders.

(Open Ended Question)

• Describe your experience presenting risk findings to technical and non-technical stakeholders, include the methodology used, how you evaluated risk, key findings, recommendations provided, and the outcome of the assessment.

(Open Ended Question)

Applicant Documents

Required Documents

- Resume/CV
- Cover Letter/Letter of Application
- List of Professional References (contact Info)

Optional Documents

- Writing Sample 1
- Writing Sample 2
- Certifications/Licenses