Job Description :: Governance Risk & Compliance Analyst :: Memphis, TN (Onsite100%)

 
Hi,
Abhay this side. We do have a new an excellent opportunity for you. This opportunity is a Contract position of Governance Risk & Compliance Analyst. Please have a look at the job description below and let me know if you or someone you know is interested in this role. You can mail me at adubey@shiftcodeanalytics.com
 
Job Title: Governance Risk & Compliance Analyst

Job Location:   Memphis, TN (Onsite100%)
 
Job Type:  Contract
 
Job Description
 

• Analyst will support key functions in the development, implementation, and maintenance of the organization's GRC program, including planning and implementing policies, procedures, standards, and controls to govern the protection and privacy of corporate information systems, networks, data and third-party risk reviews. In this role, you will have the opportunity to support strategic and innovative company initiatives through technological solutions.
• Work in the Information Security lab and work with a close team of analysts, engineers, and architects to mature the Information Security department and protect the organization and its donors.
• Analyzes and monitor enterprise information security systems and reports all suspicious activity. Requires use of a personal computer.
• Operates in an unbiased manner, maintaining confidentiality and integrity with all information security events.
• Manage third-party vendor risk assessments while collaborating with internal and external teams.
• Have a strong risk and audit mindset with experience in interpreting and assessing controls using compliance frameworks such as ISO 27001, SOC 2, PCI DSS, and others.
• Collaborate on building out an improved third-party risk management program.
• Provides analysis of information security processes and tools recommending innovative solutions for enhancing processes, toolsets, and policies.
• Stay up to date on industry trends and best practices by continuously learning and adapting the security program to address evolving threats.
• Measure and report on performance by tracking key metrics (KPIs/KRIs), identifying areas for improvement, and reporting to the GRC leader and other stakeholders.
• Assist with training personnel on information security issues. Knowledge ordinarily acquired through attainment of a bachelor s degree in business or information systems plus 3 years of progressive information security experience. Information security certification preferred. If no degree, must show extensive years of experience.

 
Job Qualifications:

• Have a strong risk and audit mindset with experience in third-party risk assessments interpreting and assessing controls using compliance frameworks such as ISO 27001, SOC 2, PCI DSS, and others.
• GRC/Vendor Management tool experience like OneTrust, Tugboat, Archer, BitSight, SecurityScorecard, etc.
• Requires thorough knowledge of information security practices and technologies; ability to speak and write in a clear and understandable manner for internal and external relations; understand extremely complex verbal or written instructions; understand information security issues dealing with computer hardware, software, and infrastructure.

 
 
Thanks & Regards, 
Abhay Dubey
Shiftcode Analytics Inc 
Tampa, FL
E-mail ID: adubey@shiftcodeanalytics.com
Direct: 214-997-5298
LinkedIn : linkedin.com/in/abhayy-dubey-a5425423a
 

 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

If you would prefer to no longer receive any emails from this Company, you may opt-out at anytime by clicking unsubscribe.