Key skills
Risk Management
About this role
Role Overview
- Play a crucial role in enabling and securing customer organizations, cultures, and ecosystems
- Spanning asset classification models, risk assessment reports, information security policies, and security solution scenarios
- Configure, monitor, and manage the performance of networks to maintain the quality of services
- Develop and implement security policies and procedures
- Raise awareness of potential security threats through technical security training on best practices
Requirements
- 2+ years of experience in more than one of the following GRC frameworks; enterprise risk management, internal audit, regulatory compliance management, policy management, third party risk management
- Working knowledge of common audit and compliance tools
- Experience in analyzing and translating business requirements into control objectives, designing security controls, and implementation within a security management cycle
- Excellent understanding of security standards and best practices e.g., ISO27001, NIST
- Experience in advising clients on one or more regulatory requirements (e.g.,HIPAA, PCI DSS, FBA, GDPR, DORA)
- Experience performing GRC maturity assessments
- Experience with coordinating SOC 2 and/or ISO 27001 audits
Benefits
- Flexible, supportive environment
- Opportunities for hands-on experience
- Learning and certification opportunities
- Be Well programs supporting financial, mental, physical, and social health