Demo

Cyber Security - Governance Risk Compliance (GRC) Analyst - FL Hybrid - W2 only

Chelsoft Solutions Co.
Boca Raton, FL Contractor
POSTED ON 12/14/2024
AVAILABLE BEFORE 3/30/2025
Job Summary

The management, assessment, and mitigation of risks are fundamental components of our information assurance and cyber security program. This position leads the IT security risk and audit program for information systems security using generally accepted standards and frameworks for IT audit and risk management (e.g., NIST, ISO, PCI, and ISACA). The position is responsible for the development and implementation of the IT security risk and audit strategy that perform information systems and business process risk assessments and evaluate the effectiveness of technical, physical, and administrative controls to identify control weakness. This individual will interface with the Security Operations, IT Operations, and various business units to:

  • Perform PCI, ISO, COBIT, and applicable State of Florida cybersecurity controls-related reviews to ensure that current, new, and technology infrastructure complies with these standards and Department’s security policies.
  • Plan and perform IT security controls effectiveness quarterly reviews. Manage remediation efforts for the identified gaps including assessment of new or enhanced implemented controls.
  • Maintain IT security risk and compliance matrix and performs management reporting. This will include IT systems controls, and business process risks to meet compliance requirements. Provide risk mitigation strategies.
  • Maintain Third Party Risk Management Program (TPRM) and analyze SOC-2 and other reporting including mapping to key IT security and compliance controls such as NIST, PCI, and COBIT.
  • Manage IT security vulnerabilities management program aligned with PCI and NIST standards.
  • Identifying and ranking the value, sensitivity, and criticality of the operations and assets that could be affected should a threat materialize in order to determine which operations and assets are the most important.
  • For the most critical and sensitive assets and operations, estimating the potential losses or damage that could occur if a threat materializes, including recovery costs.
  • Identifying cost-effective actions to mitigate and reduce risk. These actions can include implementing new organizational policies and procedures as well as the design of technical or physical controls.
  • Coordinating, tracking, and verifying remediation of audit findings.
  • Documenting the results and developing a plan of action and milestones for mitigating any identified risk.
  • Produce formal audit reports based on ISACA Audit Standards.
  • Promotes compliance with regulatory requirements (e.g. PCI DSS) and IT best practices.

GRC Risk Analyst Skills & Requirements

  • 7-10 years of IT Audit experience (CISA certified preferred)
  • 3 years of IT Risk Management lifecycle experience
  • 3 years of hands-on technical experience (e.g. developer, system administrator)
  • Experience working with NIST 800-30 Risk Assessment Standard
  • Extensive experience with IT General Controls evaluation and design
  • Advanced skill level in business process mapping and documentation as well as policy and procedure development
  • Recent experience in Information Security with up-to-date knowledge of the current threat landscape.
  • Solid understanding of PCI DSS standards

Education And Certifications

  • Bachelor‘s Degree in Computer Science, Information Systems, Business Administration, or other related field and/or equivalent work experience.
  • CISA and CISSP certifications (preferred).

If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Cyber Security - Governance Risk Compliance (GRC) Analyst - FL Hybrid - W2 only?

Sign up to receive alerts about other jobs on the Cyber Security - Governance Risk Compliance (GRC) Analyst - FL Hybrid - W2 only career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$125,027 - $157,872
Income Estimation: 
$149,432 - $188,965
Income Estimation: 
$99,793 - $130,112
Income Estimation: 
$125,027 - $157,872
Income Estimation: 
$149,432 - $188,965
Income Estimation: 
$179,455 - $227,077
Income Estimation: 
$163,631 - $209,073
Income Estimation: 
$192,911 - $256,346
Income Estimation: 
$125,027 - $157,872
Income Estimation: 
$149,432 - $188,965
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at Chelsoft Solutions Co.

Chelsoft Solutions Co.
Hired Organization Address Lansing, MI Contractor
Program Manager Lansing, MI High-Level Job Duties Establish and monitor project controlling methods to insure timely kno...
Chelsoft Solutions Co.
Hired Organization Address Lansing, MI Full Time
Job Description Job Description Seeking a C2C candidate located in the specified area. This position serves as an Cloud ...
Chelsoft Solutions Co.
Hired Organization Address Chicago, IL Full Time
SKILLS / Qualifications 8 years development experience using Java, Springboot, SQL and NoSQL databases Strong understand...
Chelsoft Solutions Co.
Hired Organization Address Palo Alto, CA Contractor
Data Engineer Location: Hybrid in Palo Alto, CA Type: Contract Duration: 6 months Required Skills : SQL, Epic domain kno...

Not the job you're looking for? Here are some other Cyber Security - Governance Risk Compliance (GRC) Analyst - FL Hybrid - W2 only jobs in the Boca Raton, FL area that may be a better fit.

Security Governance Risk Analyst

Kaizen Technologies, Boca Raton, FL

AI Assistant is available now!

Feel free to start your new journey!