Job Details

Home

GRC Security Analyst, Shelton, CT at Shelton, Connecticut, USA

Email: [email protected]

From:

yogesh,

StellentIT

[email protected]

Reply to: [email protected]

GRC Security Analyst

Location: Shelton, CT

Interview: Phone + Skype

Job description: KEY RESPONSIBILITIES

Support Compliance and Security assessment efforts with both external and internal stakeholders

Maintain established trusted relationship with IT Operational Teams (incl. Infrastructure, Enterprise Application & Digital) as well as relevant Security, Risk & Compliance stakeholders in the region and beyond

Further develop and document IT Standards comprising IT GRC relevant aspects

Support stakeholders, develop a holistic approach to authorization management across all technology areas.

Support the Group in defining the future approach to IT Risk & Compliance management in collaboration with Group Security

Support the implementation of Group IT standards within the regions and provide visibility to Group IT GRC function regarding gaps identified.

Support & coordinate Business Continuity activities aligned with central Group Technology and Group Security functions.

Actively support the remediation of vulnerabilities identified by Cyber Resilience team at the regional level (when not handled by Group IT)

Support the maintenance of the regional asset inventory and classification of applications

DIMENSION

University degree in Computer Science, Information Management or a related field is required; MS in Computer Science or Information Management is a plus.

2+ years of relevant work experience in information protection and/or audit focusing on operational IT controls, controls. Prior experience from international audit firm or another large multinational company.

Solid knowledge in information security principles and practices

Proven hands-on expertise in the following areas;

o IT GRC

o Compliance Assessments (e.g. SOX)

o Definition of Internal Controls

o IT Audits

o IT Risk Management

Industry recognized training and certification (e.g. CISA, CRISC, CISM, CISSP etc.) is a plus.

Solid understanding and knowledge of information security terminology, technology, and concepts. Extensive experience with ISO 27K standards, CoBiT, ITIL, CMM or similar frameworks is desirable.

Information security risk management and compliance, including working with risk management and information security control frameworks such as ISO 27001, 27005, SANS Critical Controls, FAIR, and EBIOS.

Team-player with excellent interpersonal, communication and influencing skills

Enthusiastic and ambitious self-starter with a strong drive for results and for whom integrity, honesty and trust are of upmost importance.

Keywords: information technology microsoft Connecticut

[email protected]
View all

Mon Feb 06 21:01:00 UTC 2023

To remove this job post send "job_kill 331909" as subject from [email protected] to [email protected]. Do not write anything extra in the subject line as this is a automatic system which will not work otherwise.

Your reply to [email protected] -

To

Subject
Message -

yogesh@stellentit.com wrote:
From:

yogesh,

StellentIT

yogesh@stellentit.com

Reply to:   yogesh@stellentit.com

GRC Security Analyst

Location: Shelton, CT

Interview: Phone + Skype

Job description: KEY RESPONSIBILITIES

Support Compliance and Security assessment efforts with both external and internal stakeholders

Maintain established trusted relationship with IT Operational Teams (incl. Infrastructure, Enterprise Application & Digital) as well as relevant Security, Risk & Compliance stakeholders in the region and beyond

Further develop and document IT Standards comprising IT GRC relevant aspects

Support stakeholders, develop a holistic approach to authorization management across all technology areas.

Support the Group in defining the future approach to IT Risk & Compliance management in collaboration with Group Security

Support the implementation of Group IT standards within the regions and provide visibility to Group IT GRC function regarding gaps identified.

Support & coordinate Business Continuity activities aligned with central Group Technology and Group Security functions.

Actively support the remediation of vulnerabilities identified by Cyber Resilience team at the regional level (when not handled by Group IT)

Support the maintenance of the regional asset inventory and classification of applications

DIMENSION

University degree in Computer Science, Information Management or a related field is required; MS in Computer Science or Information Management is a plus.

2+ years of relevant work experience in information protection and/or audit focusing on operational IT controls, controls. Prior experience from international audit firm or another large multinational company.

Solid knowledge in information security principles and practices

Proven hands-on expertise in the following areas;

o IT GRC

o Compliance Assessments (e.g. SOX)

o Definition of Internal Controls

o IT Audits

o IT Risk Management

Industry recognized training and certification (e.g. CISA, CRISC, CISM, CISSP etc.) is a plus.

Solid understanding and knowledge of information security terminology, technology, and concepts. Extensive experience with ISO 27K standards, CoBiT, ITIL, CMM or similar frameworks is desirable.

Information security risk management and compliance, including working with risk management and information security control frameworks such as ISO 27001, 27005, SANS Critical Controls, FAIR, and EBIOS.

Team-player with excellent interpersonal, communication and influencing skills

Enthusiastic and ambitious self-starter with a strong drive for results and for whom integrity, honesty and trust are of upmost importance.

Keywords: information technology microsoft Connecticut

Your email id:

Captcha Image:

Captcha Code:

Pages not loading, taking too much time to load, server timeout or unavailable, or any other issues please contact admin at [email protected]
Time Taken: 8

Location: Shelton, Connecticut