GRC Compliance Analyst

Moser ConsultingIT & Cybersecurity 3-5 Years

Job Description

Join our team of Consultants and work on dynamic long-term projects. The majority of our team members are long-term employees who enjoy consistent work and a collaborative team approach!

The GRC Compliance Analyst will be responsible for the continual quality improvement, IT policies, procedures, risk management, and tracking of IT governance. The individual will be responsible for fostering collaborative relationships with IT, business units, and partners for the purpose of building governance that enables a consistent, secure, and agile delivery of IT services designed to enable the business.

Provides awesome support for current and future enterprise systems
Use Agile Principles and Values within the prescribed framework, actively participating in all team events
Complete all relevant work as required by the team's Definition of Done
Vigilant adherence to IT security policies and procedures
Collaborate with our partners on value driven solutions, shared learning opportunities, driving new technology, innovation, and adoption
Reviews current policy for consistency and clarity
Identifies risk areas within the business
Collaborates with IT and business partners to facilitate policy implementation and develop appropriate tracking metrics
Assist with the development of risk based security assessments for systems and processes
Aid with the facilitation of corrective actions ensuring weaknesses identified in IT systems are recorded, prioritized, and addressed appropriately
Drive the optimization of processes and tools for assessing and monitoring the compliance of IT systems
Evaluates security incidents and determines what response, if any, is needed and coordinates business responses, including technical incident responses, when sensitive information is breached
Other duties as assigned
Requirements
Bachelor's degree, preferably in technology related disciplines
5+ years of experience in a security related field.
Policy development and implementation experience
Technical writing experience
CRISC, CISA, FISMA, FedRamp or equivalent certification
Cybersecurity experience
Business Analyst or process documentation experience
Working knowledge of NIST frameworks
Must be able to work well within a team environment

Posted On

May 20, 2020