Information Technology Security Specialist

We’re looking for an EIS Compliance/Governance Analyst to join our team! This role will support the execution of security framework compliance and governance activities, ensuring adherence to policies, standards, and controls while preparing key metrics and reports. The analyst will work closely with cross-functional teams to assess IT operations against frameworks like HITRUST CSF, NIST CSF, and ISO/IEC 27001.

Note: Must be local to Michigan; Second interview – required in person

Key Responsibilities:

• Evaluate Business/IT operations against HITRUST CSF, identify areas for improvement
• Conduct process walkthroughs, analyze evidence, and perform testing
• Provide recommendations for process improvements and risk mitigation
• Prepare reports, dashboards, and metrics on compliance performance
• Manage assessment remediation plans using GRC tools
• Support audits, assessments, and third-party reviews

Top Requirements:

• 3-5 years of IT compliance, IT assessments, or IT audit experience
• Knowledge of security & risk frameworks (HITRUST CSF, NIST, ISO 27001, COBIT)
• Strong written & verbal communication, problem-solving, and critical thinking skills
• Experience with IT controls testing across systems, databases, and applications
• Self-starter with excellent organizational skills and ability to multitask

Education & Certifications (Preferred but not required):

• Bachelor’s or Master’s degree in a relevant field
• CISSP, CISA, CISM, CPA, or equivalent certification