What are the responsibilities and job description for the SOC Analyst position at Prodware Solutions?
Job Title: SOC Analyst
Job Duration: 6 Months Contract
Job Location: Des Moines, IA - 3 Days onsite.
Job Description:
1-3 years’ experience. Responsible for creating high-level requirements (epics, features, user stories, process flows, etc.) and participating in grooming, sprint planning, and retrospectives with delivery team(s). Actively participates in daily stand-ups and clarifies questions from delivery team. Ensures project requirements and documentation are consumable and participates in business process mapping. Possesses strong analytical, facilitation, communication (oral and written), and technical documentation skills. Background in both Agile and Waterfall environments required.
Additional details: This role will support daily operations for the EIP Third-Party Information Risk Management Team, providing administrative support for stakeholder and vendor questions pertaining to the OneTrust Platform, questionnaires, document requests, and assessments.
Contractor duties ("What you'll do"):
Submit and manage OneTrust platform support tasks, interacting with OneTrust contacts to document, troubleshoot or resolve minor system issues.
Monitor incoming correspondence and provide timely responses to vendor or internal stakeholder questions.
Request and review security control documentation including SOC reports, certifications, and vendor policies in accordance with internal standards for control monitoring.
Work with team members and internal stakeholders to review vendor responses to risk questionnaires and solution inquiries.
Communicate consistently with team members and leadership in the event of problems or delays.
Pay keen attention to details, work effectively with internal customers, maintain adequate documentation of correspondence.
Desired experience:
At least 1 - 2 Years experience with technology support, system administration, or customer service required.
Some (<1 - 2 Years) experience interacting with third-party vendors (i.e. procurement, vendor management, or third party risk management) preferred.
Some (<1 - 2 Years) experience with or knowledge of security control frameworks such as NIST, ISO 27001, or SOC 2 preferred.