IT Security GRC Analyst II ( with HITRUST & 27001)

My name is Poornachandra Rao and I'm a recruiter at Kyyba. We specialize in recruiting professionals at all levels (both contract and perm). I came across your profile and believe you are a great fit for one of the opportunities. I've included the job description here for your review. Please let me know if you’re interested and like to discuss this opportunity in greater detail. You can reach me at (248) 254 4299

Onsite Hybrid- Mostly C2H after 6 Months but based on the Performance. 2nd Round is In Person Interview

Job Title : IT Security GRC Analyst II ( with HITRUST & 27001)

Location : Detroit, MI

Duration : 6 Months (Mostly C2H, Based on the Performance)

Engagement Description –

The EIS Compliance/Governance Analyst will be responsible for assisting in the responsibilities of executing the security framework compliance/governance activities and requirements for a major health care payer. Day-to-day responsibilities will also include documenting adherence to governance requirements across policies/standards, procedures, controls, compliance, training and awareness, and preparing metrics/KPIs and reporting materials. This role will report to the EIS ESF Manager.

§ Evaluate the design and operation effectiveness of Business/IT operations against the HITRUST CSF and identify areas of improvement

§ Interview SMEs, examine evidence documentation, analyse and perform testing

§ Learn the company functions/processes by conducting process walk throughs

§ Analyse root cause of issues, provide recommendations for process improvements and risk mitigation based on assessment findings

§ Collaborate with cross-functional teams to mitigate risks and ensure compliance with HITRUST CSF

§ Deliver effective and concise documentation that meets HITRUST quality standards

§ Prepare and provide reporting such as dashboards and metrics, on various areas of performance, issue analysis and assessment statuses

§ Utilize GRC tools to effectively manage assessment remediation plans and documentation

§ Serve as a HITRUST subject matter expert

§ Participate and provide support during audits, assessments, or other required third-party reviews.

§ Support initiatives/projects

§ Build relationships internally to foster a culture of teamwork and collaboration

Top 3 Required Skills/Experience –

§ At least 3-5 years of work experience in IT compliance, IT Assessments and/or IT audit experience as well as knowledge and understanding of governance, risk, compliance

§ Knowledge of security and risk frameworks, standards, best practices (e.g., HITRUST CSF, NIST CSF, ISO/IEC 27001, COBIT)

§ Self-starter with effective written and verbal communication skills along with strong critical thinking skill

Required Skills/Experience – The rest of the required skills/experience. Include:

§ Effective written and verbal communication skills and the ability to tailor communication style to the audience at hand.

§ Experience in coordination and execution of the audit lifecycle, including evidence collection, review, observation tracking, management response collection and auditor relations and communication.

§ Strong demonstration of problem-solving and decision-making ability.

§ Experience working on testing of IT controls across systems, databases, applications and operating systems.

§ Strong ability to frame and deliver messages based on experience and level of the listener.

§ Strong critical thinking skills to actively pursue opportunities to develop and implement solutions to solve work problems. Must be able to solve problems, handle conflict, and make effective decisions under pressure with a highly professional demeanor.

§ Strong organizational skills

§ Strong ability to adjust to changing priorities while multitasking effectively.

§ Self-directed and works with minimal guidance. Proactively seeks guidance when needed.

Education/Certifications – Include:

§ Undergraduate university degree (4-year) preferred but not required.

§ Masters (e.g., MBA, MSIS, MIS, etc.) degree preferred but not required.

§ Five (5) years of combined IT experience to include two (2) years IT security work

§ Experience in Information Security, IT general controls, IT compliance, IT assessments and/or IT audit experience.

§ Certified Information Systems Security Professional (CISSP), CISA, CPA/CA, CISM or other equivalent professional certification preferred but not required.

About Kyyba:

Founded in 1998 and headquartered in Farmington Hills, MI, Kyyba has a global presence delivering high-quality resources and top-notch recruiting services, enabling businesses to effectively respond to organizational changes and technological advances.

At Kyyba, the overall well-being of our employees and their families is important to us. We are proud of our work culture which embodies our core values; incorporating value, passion, excellence, empowerment, and happiness, creates a vibrant and productive atmosphere. We empower our employees with the resources, incentives, and flexibility that they need to support a healthy, balanced, and fulfilling career by providing many valuable benefits and a balanced compensation structure combined with career development

Disclaimer:

Kyyba is an Equal Opportunity Employer.

Kyyba does not discriminate on the basis of race, religion, colour, sex, gender identity, sexual orientation, age, non-disqualifying physical or mental disability, national origin, veteran status or any other basis covered by appropriate law. Minorities / Females / Protected Veterans / Individuals with Disabilities are encouraged to apply. All employment is decided on the basis of qualifications, merit, and business need.”

It is the policy of Kyyba to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process. If reasonable accommodation is needed, please contact Kyyba at 248-813-9665

Rewards:

Medical, dental, vision

401k

Term life

Voluntary life and disability insurance

Optional pre-paid legal plan

Optional Identity theft plan

Optional Medical and dependent FSA

Work-visa sponsorship

Opportunity for advancement

Long-term assignment with opportunity for hire by client

SELECT AWARDS

• An INC 5000 company for 10 years
• Corp! Michigan Economic Bright Spots
• Crain's Detroit Business Top Staffing Service Companies in Detroit
• Tech Serve Alliance Excellence Award- IT and Engineering Staffing & Solutions
• Best of Mich Business winner in HR Wizards & Partnerships
• Metro Detroit Elite Category: Recruitment, Selection & Orientation for 101 Best & Brightest
• 101 Best & Brightest Companies to Work for in Michigan