Apply on
Original
Simplified
Who You Are
You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others.
Required Skills And Experience
- 2+ years of experience in more than one of the following GRC frameworks; enterprise risk management, internal audit, regulatory compliance management, policy management, third party risk management
- Working knowledge of common audit and compliance tools
- Experience in analyzing and translating business requirements into control objectives, designing security controls, and implementation within a security management cycle
- Excellent understanding of security standards and best practices e.g., ISO27001, NIST
- Experience in advising clients on one or more regulatory requirements (e.g.,HIPAA, PCI DSS, FBA, GDPR, DORA)
- Experience performing GRC maturity assessments
- Experience with coordinating SOC 2 and/or ISO 27001 audits
Preferred Skills And Experience
- Valid and current certification in: CRISC – Certified in Risk and Information System Controls ; CGEIT – Certified in the Governance of Enterprise IT ; CERA – Chartered Enterprise Risk Analyst; CISM – Certified Information Security Manager; CISA – Certified Information Security Auditor; CISSP
- Statistical analysis and models
- Basic skills in network, compute, cloud computing
- Understanding and daily use of Microsoft Office 365 Suite and other productivity tools (e.g., Excel, Word, PowerPoint, SharePoint) to accomplish audit and compliance related tasks
- Experience with project management and ability to manage security initiatives or projects
Similar Jobs