IT Security, Senior Analyst

Responsibilities

Kforce has a client that is seeking an IT Security, Senior Analyst in Dania Beach, FL. Responsibilities: The Senior IT Security Compliance Analyst will be responsible for day-to-day activities in implementing the information security governance, risk, and compliance program. The individual will assist in maintaining audit and compliance initiatives to ensure policies, standards, procedures, and audit activities are in alignment with business, IT, and regulatory requirements including but not limited to SOX and PCI. Success in the role will be measured by the effectiveness of the implementation and operation of information security governance, risk, and compliance directives. This is an onsite role in South FL. Responsibilities:

• Identify, collect, organize, and review pertinent evidence such as user access reviews across multiple platforms and applications to determine compliance with relevant regulatory controls
• Coordinate the internal and external SOX/PCI audits for IT
• Acts as a liaison between Auditors and IT by coordinating requests for information and by coordinating responses to any observations
• Establish and maintain security and controls, policies, and procedures in accordance with applicable regulations
• Research new security compliance requirements and assist in the evaluation of compliance control requirements
• Establish and report technology risk related metrics
• Schedule and lead technical interviews with various stakeholders and leadership
• Write detailed findings, remediation plans, and obtain supporting documentation
• Ensures compliance with applicable information security standards and policies
• Provide IT management guidance as to how to re-mediate pertinent action items to ensure ongoing compliance
• Conduct and evaluate risk assessments for all kind of assets and entities including third parties
• Effectively manages internal and external audit requests
  
  

Requirements

• Bachelor's degree or equivalent experience (indicate specific field, if required)
• 10 years of experience in IT audit, Information Security, and IT domains such as Governance, Risk, and Compliance (GRC), IT operations, incident response, identity and access management, penetration testing, vulnerability testing, e-discovery and forensics, application development, infrastructure, technical support, or business
• Previous experience in implementing and utilizing a GRC tool
• Working knowledge of how to apply information security frameworks such as NIST and ISO within an organization
• Working knowledge of how to apply risk management frameworks within Information Security and the broader technology environment
• Excellent written and verbal communication skills
• Strong experience working with productivity tools such as MS Office
• Ability to interact confidently with various levels of technical and management positions
• Possess a broad knowledge of technology operation group requirements and activities
• Must be able to translate theoretical requirements into applicable policies and standards
• Critical thinker
• Must be able to provide multiple solutions to complex problems - problem solver
• One or more of the following CISSP, CGRC, CISA, CRISC preferred
• Previous Identity and Access Management experience is a plus
  
  

The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.

We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.

Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.

This job is not eligible for bonuses, incentives or commissions.

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.

By clicking “Apply Today” you agree to receive calls, AI-generated calls, text messages or emails from Kforce and its affiliates, and service providers. Note that if you choose to communicate with Kforce via text messaging the frequency may vary, and message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You will always have the right to cease communicating via text by using key words such as STOP.