Business Process Mapping – Who Needs Engineers
/wne_live
Software Engineering RecruitmentTue, 08 Oct 2024 00:25:02 +0000en-US
hourly
1 https://wordpress.org/?v=6.6.2/wne_live/wp-content/uploads/2023/06/cropped-wne_logo-3-32x32.pngBusiness Process Mapping – Who Needs Engineers
/wne_live
3232Security GRC Analyst
/jobs/cybersecurity/security-grc-analyst/
Tue, 08 Oct 2024 00:25:02 +0000/wne_live/jobs/jobs-categories/security-grc-analyst/Security GRC Analyst
Job Description:
Join our dynamic team as a Security GRC Analyst where you will play a vital role in ensuring the integrity and compliance of our IT infrastructure. You will be responsible for conducting thorough reviews of cybersecurity controls related to standards such as PCI, SOC2, and ISO. Your expertise will be crucial in assessing the effectiveness of IT security controls and managing remediation efforts for any identified gaps. In addition, you will maintain a comprehensive IT security risk and compliance matrix, providing essential management reporting that addresses IT systems controls and business process risks. Your ability to develop risk mitigation strategies will directly support the company's adherence to regulatory requirements and best practices in the cybersecurity landscape. By actively managing the Third Party Risk Management Program and evaluating SOC-2 reports, you will help align our operations with key IT security frameworks like NIST and COBIT. Your insights will be instrumental in identifying vulnerabilities and proposing cost-effective actions to mitigate risks, ensuring our business remains resilient against potential threats.
IT Languages:
NIST
ISO
PCI DSS
SOC2
As a Security GRC Analyst, your primary responsibilities will include conducting audits, managing compliance programs, and ensuring the implementation of security standards.:
Perform PCI, SOC2, and ISO cybersecurity controls reviews.;; Plan and conduct assessments of IT security controls effectiveness.;; Maintain and report on IT security risk and compliance metrics.;; Oversee Third Party Risk Management Program, analyzing vendor reports.;; Manage IT security vulnerabilities in accordance with PCI and NIST standards.;; Identify and rank operations and assets affected by potential threats.;; Estimate potential losses related to critical assets and operations.;; Develop organizational policies and procedures for risk mitigation.;; Coordinate and verify remediation of audit findings.;; Produce formal audit reports based on ISACA standards.;; Promote compliance with regulatory requirements.
Spoken Languages:
English
Skillset:
IT Audit
Risk Management
Technical Security Controls
Business Process Mapping
Policy Development
Information Security
Soft Skills:
Attention to Detail
Analytical Thinking
Effective Communication
Problem-Solving
Team Collaboration
Qualifications:
Bachelor’s Degree in Computer Science, Information Systems, Business Administration, or a related field.
CISA and CISSP certifications are preferred.
Years of Experience:
7
Location:
Boca Raton, FL, United States
Job Benefits:
Health Insurance
Retirement Savings Plan
Professional Development Opportunities
Flexible Work Environment
Paid Time Off
Working Conditions:
Full Time
Employment Type:
Contract
Company Culture:
We foster a culture of diversity and inclusion, where every employee is encouraged to contribute their unique perspectives. Our collaborative environment promotes innovation and creativity, ensuring that all team members feel valued and empowered in their roles.
Opportunities For Advancement:
Leadership Development Programs, Mentorship Opportunities, Career Pathing Resources