IT Security GRC Analyst - Remote
Staff Perm is seeking an IT / Security GRC Analyst to support a growing cybersecurity client. This position requires 1 years of experience in a similar role. The IT / Security Governance, Risk, and Compliance (GRC) Analyst will be supporting cybersecurity, compliance, risk, and GRC program initiatives. This person will work closely with the team and client's senior partners to provide client and backend support for security / IT controls, assessments, analysis, risk, audits, GRC tools, policies, processes, industry frameworks, privacy etc.
LOCATION : Remote Work from Home
POSITION : Contract to Hire
PAY : $30hr
BENEFITS : Healthcare, Dental, Vision, Life, Disability, Telehealth, Prescription Drug Discount Plan etc.
- US Citizen or Green Card Holder
- No 3 rd parties, C2C or Agencies
RESPONSIBILITIES
Assess, evaluate, and make recommendations regarding the adequacy of the security / IT controls for the client's environment and business objectivesDevelop policies, procedures, and processes based on audit findings and / or compliance framework requirementsCrosswalk controls across multiple security compliance frameworks and regulation to foster adoption and identify gapsAdvise and develop security standards, guidelines, and controls based on best practices and compliance frameworksTranslate security analyses, audit results, and compliance guidance into plain English that is understandable and actionableAnalyze and suggest improvements for security / IT controls in both design and operation effectivenessDevelop risk registers, ideally aligned to controls, and execute basic risk assessment and management practicesPerform assessments (risk and / or compliance) to develop a baseline for creating or expanding a security programDevelop plans and tracking for non-compliance with applicable controls, and monitoring remediation progress against agreed upon timelinesWork with various client GRC toolsPerform data analysis and manipulation as needed to analyze a problem and create a solution for our clientsEvaluate new and existing technologies for compliance with information governance controls (e.g., access, authentication, encryption, logging, retention)Perform other duties for Hotman Group or as assigned to best serve our clients in their security, risk, compliance, or GRC programsKNOWLEDGE, SKILLS, AND ABILITIES
Ability to manage and execute numerous parallel activities in a fast-paced, dynamic team environmentStrong organizational skills with ability to manage multiple tasks and projects, demonstrated prioritization and decision-making skills to not miss deadlines or drop assignmentsStrong written and verbal skills, including a demonstrated ability to translate complex or technical information into concepts that are easily understood and actionableFamiliarity and knowledge of fundamental security / IT concepts (e.g., retention, data classification, change management, access control, asset management, third party risk)Demonstrated critical thinking skills, but also able to follow instruction to meet the team's overall objectiveTechnical aptitude to be able to learn new technologies quickly with little instructionStrong attention to detail and high commitment to qualityGood attitude and courtesy to work with a smaller, fast-paced teamEfficient worker looking for ways to gain efficiencies and maximize time spentAble to operate with a high degree of independence executing with excellent follow-through for assigned tasks, but also knowing when to stop, ask questions, and seek input from the team or managementPassionate about cybersecurity, risk, compliance, and GRC to make companies more secure and healthy in protecting their dataNot afraid to roll your sleeves up, learn what's needed to learn, get done what needs to get doneReliability, discretion and confidentialityREQUIREMENTS
Bachelor's degree in a Cybersecurity, Information Systems, or Related Field1 years' experience in a Cybersecurity, Audit, Risk, Compliance, or GRC requiredWorking knowledge of common Security and Privacy Frameworks and Regulation (e.g. ISO, NIST, CIS, SOC 2, HIPAA, CCPA, PCI DSS)Knowledge of Risk Management practices, and Risk-based thinking to drive prioritizationExperience responding to, analyzing, and communicating Security and Information technology-related practices and controlsPreference given to those with Security or Risk Management CertificationsSoftware Skills : Excel, Word, PowerPoint and GRC toolsExcellent Communication skillsUnderstand Audit Processes and RequirementsClear background checkPre-Employment Screening :
Please note that all offers of employment are contingent upon the successful completion of a background check and drug screening based on local, state and federal laws in your region. This process is designed to ensure the safety and integrity of the workplace. Minor offenses will not necessarily disqualify a candidate from consideration and all situations are reviewed by HR for compliance with local laws and hiring requirements for the role.
About Staff Perm
Staff Perm is an Award Winning and Certified Small Business Enterprise utilizing a staff with over 20 years of staffing and placement experience to simplify the employee recruitment process.
Staff Perm LLC 7214 S State Hwy 78 Suite #1, Sachse, TX 75048 www.staffperm.com
Salary : $30
