Vacancy expired!
Location: Malvern, PA Description: Our client is currently seeking a GRC Analyst
This job will have the following responsibilities:- Experience with legal and regulatory compliance standards such as SOC, SOX, GDPR, etc.
- Familiarity with ISMS and security frameworks, particularly NIST Cybersecurity Framework.
- Strong understanding of fundamental information security concepts and technology.
- Experience with IT GRC/IRM platforms is a plus.
- Experience with IT governance, risk, and compliance management in a large global environment.
- Collaborate to understand and define IT security standards and develop supporting organizational policies.
- Perform security and compliance assessments on new and existing vendors, systems, processes, technology.
- Support vendor due-diligence process and help to lead and define overall third party risk management efforts.
- Work with various business units to ensure controls are adequate, appropriate, and effective.
- Support internal and external audit process for relevant compliance concerns including SOC, GDPR, ISO, etc.
- Perform business impact analysis and assist with development of IT/InfoSec risk register.
- Interface with global IT and business partners to provide guidance and support.
- Perform ongoing gap assessments to validate compliance on an ongoing basis.
- Stay up to date and informed on developing regulatory concerns and changing IT and information security trends.
- Bachelor's degree in related field or equivalent work experience.
- ISACA or (ISC)2 Certification a plus
Vacancy expired!