Position Details

Position Information

Recruitment/Posting Title
Information Security Risk Analyst

Job Category
Staff & Executive - Information Technology

Department
OIT - Information Security

Posting Summary

Rutgers, The State University of New Jersey is seeking an Information Security Risk Analyst for the Office of Information Security (OIT). This position will report to the Information Security Risk Manager.

Among the key duties of this position are the following:

• Facilitates and evaluates internal and third-party information security risk assessments.
• Provides risk remediation recommendations to mitigate identified control gaps and promotes awareness of available supporting resources and technologies.
• Works closely with stakeholders across campus to ensure that risks are well documented and communicated.
• Maintains a formal risk register that supports security governance and ensures security findings are aligned with business objectives.
• Acts as an SME for the end-to-end management of findings related to information security assessments for vendors and applications.
• Assists in creating policies and procedures to help reduce risk.
• Performs other assigned tasks.

FLSA
Exempt

Grade
07

Salary Details

Minimum Salary
108147.000

Mid Range Salary
136809.000

Maximum Salary
165471.000

Offer Information

The final salary offer may be determined by several factors, including, but not limited to, the candidate's qualifications, experience, and expertise, and availability of department or grant funds to support the position. We also take into consideration market benchmarks, if and when appropriate, and internal equity to ensure fair compensation relative to the university's broader compensation structure. We are committed to offering competitive and flexible compensation packages to attract and retain top talent.

Benefits

Rutgers provides a comprehensive benefits package to eligible employees. The specific benefits vary based on the position and may include:

• Medical, prescription drug, and dental coverage
• Paid vacation, holidays, and various leave programs
• Competitive retirement benefits, including defined contribution plans and voluntary tax-deferred savings options
• Employee and dependent educational benefits (when applicable)
• Life insurance coverage
• Employee discount programs

Position Status
Full Time

Working Hours

Standard Hours
37.50

Daily Work Shift

Work Arrangement

Consistent with the current application of Rutgers Policy 60.3.22 or the applicable provisions of relevant collective negotiations agreements, this position may be eligible for a hybrid work arrangement. Flexible work arrangements are not permanent, subject to change or discontinuation, and contingent on the employee receiving approval in the FlexWork@RU Application System.

Union Description
Admin Assembly (MPSC)

Payroll Designation
PeopleSoft

Seniority Unit

Terms of Appointment
Staff - 12 month

Position Pension Eligibility
ABP

Qualifications

Minimum Education and Experience

• Bachelor's degree in Computer Science, Information Systems, Management Information Systems or a related field and a minimum of five (5) years of experience in Information Security programs.

Certifications/Licenses

Required Knowledge, Skills, and Abilities

• Knowledge of HIPAA, GLBA and PCI DSS regulations and frameworks such as NIST CSF.
• Excellent interpersonal, communication and influencing skills.
• Ability to collaborate effectively across a variety of disciplines and levels inside/outside the organization.
• Ability to effectively analyze, document and communicate information security concepts to different user bases, including students, faculty, staff and systems personnel.

Preferred Qualifications

• Minimum of five (5) years of experience performing information security assessments in accordance with relevant regulatory requirements.
• Demonstrated skill in conducting internal or external risk assessments and providing guidance on the implementation, monitoring, and reporting of control processes, documentation, compliance measures, and/or remediation items.
• Ability to communicate complex technical issues to diverse audiences, both orally and in writing, in a clear, authoritative, and actionable manner.
• Ability to identify and assess the severity and potential impact of risks and communicate findings effectively to risk owners.
• Knowledge of common cybersecurity frameworks and standards (e.g., NIST 800-171, ISO 27001/27002).
• Experience with Governance, Risk, and Compliance (GRC) and/or Vendor Risk Management (VRM) platforms.
• Strong interpersonal skills with the ability to work effectively with both technical and non-technical personnel at various organizational levels.
• CISSP or CRISC certification.

Equipment Utilized

Physical Demands and Work Environment

Special Conditions

Posting Details

Posting Number
26ST1322

Posting Open Date
06/16/2026

Special Instructions to Applicants

Regional Campus
Rutgers University-New Brunswick

Home Location Campus
Rutgers University - New Brunswick

City
New Brunswick

State
NJ

Location Details

Pre-employment Screenings

All offers of employment are contingent upon successful completion of all pre-employment screenings.

Immunization Requirements
Under Policy 100.3.1 Immunization Policy for Covered Individuals, if employment will commence during Flu Season, Rutgers University may require certain prospective employees to provide proof that they are vaccinated against Seasonal Influenza for the current Flu Season, unless the University has granted the individual a medical or religious exemption. Additional infection control and safety policies may apply. Prospective employees should speak with their hiring manager to determine which policies apply to the role or position for which they are applying. Failure to provide proof of vaccination for any required vaccines or obtain a medical or religious exemption from the University will result in rescission of a candidate's offer of employment or disciplinary action up to and including termination.