Security GRC Analyst

Security GRC Analyst

Job Description:

Join our dynamic team as a Security GRC Analyst where you will play a vital role in ensuring the integrity and compliance of our IT infrastructure. You will be responsible for conducting thorough reviews of cybersecurity controls related to standards such as PCI, SOC2, and ISO. Your expertise will be crucial in assessing the effectiveness of IT security controls and managing remediation efforts for any identified gaps. In addition, you will maintain a comprehensive IT security risk and compliance matrix, providing essential management reporting that addresses IT systems controls and business process risks. Your ability to develop risk mitigation strategies will directly support the company's adherence to regulatory requirements and best practices in the cybersecurity landscape. By actively managing the Third Party Risk Management Program and evaluating SOC-2 reports, you will help align our operations with key IT security frameworks like NIST and COBIT. Your insights will be instrumental in identifying vulnerabilities and proposing cost-effective actions to mitigate risks, ensuring our business remains resilient against potential threats.

IT Languages:

• NIST
• ISO
• PCI DSS
• SOC2

As a Security GRC Analyst, your primary responsibilities will include conducting audits, managing compliance programs, and ensuring the implementation of security standards.:

Perform PCI, SOC2, and ISO cybersecurity controls reviews.;; Plan and conduct assessments of IT security controls effectiveness.;; Maintain and report on IT security risk and compliance metrics.;; Oversee Third Party Risk Management Program, analyzing vendor reports.;; Manage IT security vulnerabilities in accordance with PCI and NIST standards.;; Identify and rank operations and assets affected by potential threats.;; Estimate potential losses related to critical assets and operations.;; Develop organizational policies and procedures for risk mitigation.;; Coordinate and verify remediation of audit findings.;; Produce formal audit reports based on ISACA standards.;; Promote compliance with regulatory requirements.

Spoken Languages:

• English

Skillset:

• IT Audit
• Risk Management
• Technical Security Controls
• Business Process Mapping
• Policy Development
• Information Security

Soft Skills:

• Attention to Detail
• Analytical Thinking
• Effective Communication
• Problem-Solving
• Team Collaboration

Qualifications:

• Bachelor's Degree in Computer Science, Information Systems, Business Administration, or a related field.
• CISA and CISSP certifications are preferred.

Years of Experience:

7

Location:

Boca Raton, FL, United States

Job Benefits:

• Health Insurance
• Retirement Savings Plan
• Professional Development Opportunities
• Flexible Work Environment
• Paid Time Off

Working Conditions:

Full Time

Employment Type:

Contract

Company Culture:

• We foster a culture of diversity and inclusion, where every employee is encouraged to contribute their unique perspectives. Our collaborative environment promotes innovation and creativity, ensuring that all team members feel valued and empowered in their roles.

Opportunities For Advancement:

• Leadership Development Programs, Mentorship Opportunities, Career Pathing Resources

Visa Sponsorship:

Not Available