OneMain Financial Jobs

Job#: 3023630

Job Description:

Apex is looking for an Info Sec Risk Analyst to start in March 2026!

Information Security Risk Analyst (Contract)

• Location: Columbus, OH (Remote-first; onsite for key meetings)
• Contract: 6 months to conversion
• Industry Experience: Healthcare required
• Pay rate: $45-50 based on experience
• Schedule: M-F, 8-5

Summary

• The Information Security Risk Analyst supports client risk management, compliance, and security governance functions. This role focuses heavily on application and third-party risk assessments, with an emphasis on healthcare regulatory requirements such as HIPAA and PCI. While previous IT security experience is not mandatory, a degree in Information Security or Security+ certification is preferred.
• This is a backfill role within an established healthcare security program. Candidates must be organized, collaborative, and comfortable working under general guidance.

Key Responsibilities

• Risk Assessments & Operational Support (75%)
• Perform routine application risk assessments for internally hosted and cloud-hosted applications.
• Conduct third-party/vendor risk assessments.
• Assist with data classification and data governance activities.
• Evaluate information security controls and organizational practices.
• Conduct technical analysis to verify security requirements are met.
• Audit system access and ensure compliance with client standards.
• Support Identity & Access Management activities.
• Assist the Security Officer and Privacy Officer with investigations.
• Document findings and contribute to continuous improvement of the risk management process.
• Project & Advisory Support (15%)
• Participate in project consultations regarding infrastructure and security tools (firewalls, authentication, access controls, IPS, etc.).
• Assist in evaluating new technologies for alignment with security architecture.
• Contribute to the creation and enhancement of technical security standards.
• Provide requirements and guidance to IT teams and third-party vendors.
• Support security documentation, governance, outreach, and training initiatives.
• Assist with contingency planning and evaluation efforts.
• Administrative Duties (10%)
• Attend team meetings and respond to relevant communication.
• Provide weekly status updates and complete timekeeping requirements.
• Participate in departmental committees and professional development.
• Stay current with emerging information security technologies and practices.
• Perform other duties as assigned.

Minimum Qualifications

• Bachelor's degree in cybersecurity, information systems, or related field OR 2+ years of systems analyst experience.
• Foundational understanding of information security best practices.
• Knowledge of risk assessment lifecycle and risk management concepts.
• Effective written and verbal communication skills.
• Healthcare experience (required).
• Familiarity with HIPAA and PCI guidelines (preferred).

• Security+ or similar certification (preferred).

   

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Apex