This position is for a Security Risk Analyst. The Security Risk Management program addresses both internal and external risks. The SRA will conduct project and technology based risk assessments within the environment, conduct technical and nontechnical third party risk assessments, and recommend mitigating action or controls. The SRA will further identify and convey information security, physical security, business continuity, and, IT operational requirements to project teams, and the Sourcing department in support of new contracts and ongoing engagements. The primary responsibility of the SRA is to identify, analyze, and recommend mitigation strategies for information security risks.