Risk Analyst

W2 ONLY NO CTC

HYBRID IN BEAVERTON, OR 3 DAYS A WEEK!

Our client is looking for an Information Security Governance, Risk, and Compliance Analyst that can make informed, risk-based decisions and maintain compliance with global regulations while supporting business goals.

We’re looking for someone passionate about Governance, Risk, and Compliance with knowledge of industry frameworks like ISO, NIST, and CoBIT. You’ll collaborate with business and technology teams to guide security and compliance efforts across the organization.

Key responsibilities include:

• Assessing platforms for security and compliance standards.
• Evaluating exceptions to policies.
• Leading internal risk assessments and reporting findings.
• Conducting third-party vendor risk assessments.
• Advising on compliance matters using ITGC knowledge.
• Promoting security policies and controls as part of daily operations.
• Leading compliance control testing and analysis.
• Driving security training and awareness programs.
• Creating reports and presentations.

Qualifications:

• Strong knowledge of information security principles and frameworks (e.g., PCI DSS, NIST, ISO 27000).
• Experience with third-party SOC reports.
• Familiarity with compliance tools like ServiceNow, Confluence, or JIRA.
• Strong collaboration and communication skills.