Home

GRC Analyst - Risk & Compliance Analyst !! Memphis, TN (Local Only !! at Memphis, Tennessee, USA
Email: [email protected]
Position:              GRC

Analyst  -  Risk & Compliance Analyst

Location:             Memphis, TN (Local Only)

CITIZEN,GC EAD,GREEN CARD,H4 EAD

candidates strongly preferred. Job title: Risk & Compliance Analyst

Top Skills Preferred in order of preference:

Have a strong risk and audit mindset with experience in third-party risk assessments interpreting and assessing controls using compliance frameworks such
as ISO 27001, SOC 2, PCI DSS, and others.

Collaborate on building out an improved
third-party risk management program by owning & reporting on performance by tracking key metrics (
KPIs/KRIs).

GRC/Vendor Management tool experience like OneTrust, Tugboat, Archer, BitSight, SecurityScorecard, etc
.

Essential Job Functions

Work in the Information Security lab and work with a close team of analysts, engineers, and architects to mature the Information Security department and protect the organization and its donors.

Analyzes and monitor enterprise information security systems and reports all suspicious activity. Requires use of a personal computer.

Operates in an unbiased manner, maintaining confidentiality and integrity with all information security events.

Manage third-party vendor risk assessments while collaborating with internal and external teams.

Have a strong risk and audit mindset with experience in interpreting and assessing controls using compliance frameworks
such as ISO 27001, SOC 2, PCI DSS, and others.

Collaborate on building out an improved third-party risk management program.

Provides analysis of information security processes and tools recommending innovative solutions for enhancing processes, toolsets, and policies.

Stay up to date on industry trends and best practices by continuously learning and adapting the security program to address evolving threats.

Measure and report on performance by tracking key metrics (KPIs/KRIs), identifying areas for improvement, and reporting to the GRC leader and other stakeholders.

Assist with training personnel on information security issues. Knowledge ordinarily acquired through attainment of a bachelors degree in business or information systems plus 3 years of progressive information security experience. Information security certification preferred. If no degree, must show extensive years of experience.

Governance Risk and Compliance (GRC) Analyst will support key functions in the development, implementation, and maintenance of the organization's GRC program, including planning and implementing policies, procedures, standards, and controls to govern the protection and privacy of corporate information systems, networks, data and third-party risk reviews. In this role, you will have the opportunity to support strategic and innovative company initiatives through technological solutions.

Requires thorough knowledge of information security practices and technologies; ability to speak and write in a clear and understandable manner for internal and external relations; understand extremely complex verbal or written instructions; understand information security issues dealing with computer hardware, software, and infrastructure.

Examples of daily assignments or duties this contractor would be responsible for supporting:

Manage and execute on vendor third party risk assessments & reporting. Collaborating with internal teams and external vendors driving success for GRC program.

Effectively managing a dynamic schedule of vendor engagements and assessments while analyzing for any security concerns that may impact ALSAC.

Operate in ALSACs GRC toolset providing daily updates for the downstream use for the entire team.

Measure and report on performance by tracking key metrics, identifying areas for improvement, and reporting to the GRC leader and other stakeholders.

Screening Questions (Please add to the top of the resume)

             Please describe your experience with third-party risk assessments and the methodologies used.

             Please describe your experience reviewing and evaluating security attestations documents such as PCI DSS, SOC 2 Type II, ISO 27001, etc.

Thanks & Regards
.!

Manish Chaubey

Technical  Recruiter  | Adventa Tech Inc (An E- VERIFIED COMPANY)

24916 Earls Ford Drive Chantilly, VA 20152

Email : [email protected] 

Hangout
:
'[email protected]'

Disclaimer
:

This communication, along with any documents, files or attachments, is intended only for the use of the addressee and may contain confidential information. If you are not the intended recipient, you are hereby notified that any dissemination, distribution or copying of any information contained in or attached to this communication is strictly prohibited, To remove your email address permanently from future mailings, please send REMOVE to [email protected]

--

Keywords: information technology green card trade national Tennessee Virginia
GRC Analyst - Risk & Compliance Analyst !! Memphis, TN (Local Only !!
[email protected]
[email protected]
View all
Wed Oct 02 21:32:00 UTC 2024

To remove this job post send "job_kill 1805611" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.


Your reply to [email protected] -
To       

Subject   
Message -

Your email id:

Captcha Image:
Captcha Code:


Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 12

Location: Memphis, Tennessee