remote

Senior IT Security Risk Analyst - Amerisure

Software Engineer

Senior IT Security Risk Analyst responsible for identifying, evaluating, and mitigating information security risks across the organization, leveraging ISO 27001, NIST frameworks, and cloud security best practices.

About the role

Key Responsibilities

Conduct comprehensive risk assessments and gap analyses to identify security vulnerabilities and compliance gaps.
Develop, implement, and maintain risk mitigation strategies aligned with ISO 27001 and NIST frameworks.
Lead security auditing activities, including internal audits, third‑party assessments, and continuous monitoring of controls.
Collaborate with IT, engineering, and business units to integrate security requirements into cloud and on‑premise architectures.
Prepare and present risk reports, executive summaries, and remediation plans to senior leadership.

Requirements

5+ years of experience in information security risk analysis, preferably in the insurance or financial services sector.
Strong knowledge of ISO 27001, NIST CSF, and other industry‑standard security frameworks.
Hands‑on experience with vulnerability management tools and cloud security platforms (e.g., AWS, Azure).
Proven ability to conduct security audits, produce risk documentation, and drive remediation efforts.
Relevant certifications such as CISSP, CISM, or CRISC are highly desirable.

Skills

aws

CompanyAmerisure

DepartmentEngineering

LocationFarmington Hills, Michigan, United States

Experience2+ years

Tenurefull-time

LevelSenior

Posted June 24, 2026