Senior Associate - Risk Management Analyst

We are the leading provider of professional services to the middle market globally, our purpose is to instill confidence in a world of change, empowering our clients and people to realize their full potential. Our exceptional people are the key to our unrivaled, culture and talent experience and our ability to be compelling to our clients. You’ll find an environment that inspires and empowers you to thrive both personally and professionally. There’s no one like you and that’s why there’s nowhere like RSM.

We are seeking a detail-oriented and analytical Risk Management Analyst to join our cybersecurity team. The ideal candidate will possess strong critical thinking skills and a proactive approach to identifying, assessing, and mitigating vulnerabilities within clients’ systems and networks. This role is essential in ensuring the security and integrity of our clients’ information assets and will involve collaboration with various teams to enhance their overall security posture.

Key Responsibilities:

• Conduct regular vulnerability assessments and scans to identify potential security weaknesses in systems, applications, and networks.
• Administer vulnerability management and automated patching SaaS applications.
• Analyze and prioritize vulnerabilities based on risk assessment, potential impact, and exploitability, utilizing critical thinking to make informed decisions.
• Collaborate with managed and client IT teams to support remediation of identified vulnerabilities.
• Collaborate with SOC, engineering, and service delivery teams to respond to requests and help advise on various technical matters including vulnerabilities, emerging threats and technologies, and solutions for common problems related to current processes.
• Monitor and evaluate emerging threats in the cybersecurity landscape, adapting strategies as necessary.
• Develop and maintain documentation related to vulnerability management processes, findings, and remediation efforts.
• Prepare and present reports on vulnerability status, trends, and remediation progress to stakeholders, using clear and concise communication.
• Assist in the development and implementation of security policies, standards, and procedures related to vulnerability management and patching.
• Participate in incident response activities as needed, providing insights and analysis to support investigations.
• Leverage data analytics platforms to create reports, query emerging threats and analyze trends to help minimize risk and improve posture across a large client base.

Preferred Qualifications:

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
• 3-5 years of experience in information technology, cybersecurity, or a related field.
• Strong understanding of vulnerability assessment tools and methodologies (e.g., Nessus, Qualys, Rapid7).
• Experience with data analytics platforms (eg. PowerBI) and structured data sets.
• Experience with cloud platforms (AWS, Azure) is a plus.
• Familiarity with security frameworks and standards (e.g., NIST, ISO 27001, CIS Controls) is a plus.
• Excellent critical thinking and problem-solving skills, with the ability to analyze complex situations and make sound decisions.
• Strong communication skills, both written and verbal, with the ability to convey technical information to non-technical stakeholders.
• Relevant certifications (e.g., Sec+, AWS Cloud Practitioner) are a plus.

At RSM, we offer a competitive benefits and compensation package for all our people. We offer flexibility in your schedule, empowering you to balance life’s demands, while also maintaining your ability to serve clients. Learn more about our total rewards at https://rsmus.com/careers/working-at-rsm/benefits.

All applicants will receive consideration for employment as RSM does not tolerate discrimination and/or harassment based on race; color; creed; sincerely held religious beliefs, practices or observances; sex (including pregnancy or disabilities related to nursing); gender; sexual orientation; HIV Status; national origin; ancestry; familial or marital status; age; physical or mental disability; citizenship; political affiliation; medical condition (including family and medical leave); domestic violence victim status; past, current or prospective service in the US uniformed service; US Military/Veteran status; pre-disposing genetic characteristics or any other characteristic protected under applicable federal, state or local law. 

Accommodation for applicants with disabilities is available upon request in connection with the recruitment process and/or employment/partnership. RSM is committed to providing equal opportunity and reasonable accommodation for people with disabilities. If you require a reasonable accommodation to complete an application, interview, or otherwise participate in the recruiting process, please call us at 800-274-3978 or send us an email at [email protected].

RSM does not intend to hire entry level candidates who will require sponsorship now OR in the future (i.e. F-1 visa holders). If you are a recent U.S. college / university graduate possessing 1-2 years of progressive and relevant work experience in a same or similar role to the one for which you are applying, excluding internships, you may be eligible for hire as an experienced associate.

RSM will consider for employment qualified applicants with arrest or conviction records. For those living in California or applying to a position in California, please click here for additional information.

At RSM, an employee’s pay at any point in their career is intended to reflect their experiences, performance, and skills for their current role. The salary range (or starting rate for interns and associates) for this role represents numerous factors considered in the hiring decisions including, but not limited to, education, skills, work experience, certifications, location, etc. As such, pay for the successful candidate(s) could fall anywhere within the stated range.