What are the responsibilities and job description for the GRC Engineer position at OpenArc?
OpenArc - Empowering Your Career. As a leading IT staffing firm, we are dedicated to connecting talented professionals with your ideal opportunities. We are currently seeking a qualified GRC Engineer to join our client’s organization and contribute to their ongoing success. Job summaryThe GRC Engineer will be responsible for day-to-day tasks related to governance, risk management, and compliance (GRC) activities. This includes assessing security risks, developing risk management strategies, ensuring compliance with regulations, and implementing security measures to protect company assets for our customers. Responsibilities : Advise others of information security concepts using presentations, reports, examples, and visualizations.Provide support for other Engineers during assessments of client environments against industry standard frameworks to identify client’s current state of program maturity and identify applicable risks.Create, develop, mature, and contribute to catalog of GRC services through product ownership and idea generation based on organizational goals.Work with clients to identify and document their desired maturity state and risk-balanced state and develop a gap assessment and roadmap to guide the process of maturing towards their desired state.Advise client’s teams at all levels from the C-Suite to individual contributors regarding information security governance through mediums such as presentations, reports, and visualizations.Contribute to the development of best practice frameworks suitable for use during assessments and improvement planning, and integration with assessment toolsets. Requirements : Experience in Governance, Risk, and Compliance with a focus on protecting companies through building a security program, security governance documentation, and engineering systems to be robust and resistant to attack.Experience with common security frameworks and regulations such as ISO 27001 / 2, SOC2, HIPAA / HITECH, SOX, PCI-DSS, GDPR, NIST 800 series, ITIL, and CMMC.Familiarity with risk assessments, managing third-party risk, and risk management programs.Ability to write clear and concise information security policies, standards, and processes.Experience with GRC tools and tracking mechanisms and assist in implementing process automation solutions in a client-facing environmentAt OpenArc, we prioritize your career success and strive to build exceptional technical teams for our clients. By understanding your experience and aspirations, we ensure to present you with rewarding and fulfilling opportunities. As an employee of OpenArc and our clients, you will be eligible to participate in a comprehensive benefits package. OpenArc is an equal opportunity employer and will consider all applications without regards to race, sex, age, color, religion, national origin, veteran status, disability, sexual orientation, gender identity, genetic information or any characteristic protected by law.
