IT Risk And Compliance Analyst

Job Description:

We are seeking a highly motivated and detail-oriented IT Risk and Compliance Analyst to join our team. The ideal candidate will be responsible for ensuring that IT risk management processes are embedded in the enterprise, enabling optimal risk assessments returns. This role involves supporting IT risk governance internal and external assessments and audits and working on problems of diverse scope where analysis of data requires evaluation.

Job Duration: Minimum six months with option to renew.

Key Responsibilities:

Provide Consulting for IT Risk Management, Compliance & Metrics

Monitor & Report on IT Controls Compliance - monitor first line of defense.

Facilitate Assessments and Audits represent customer's Info Sec Program for regulators and customers.

Contribute to the Establishment & Maintenance of Primary Common Controls that align with business, regulatory and information security goals.

Provide independent oversight of the risk management activities of the Service Owners.

Perform independent validation to evaluate the adequacy and effectiveness of key controls.

Qualifications:

Bachelor's degree in Information Technology, Risk Management, or a related field.

Minimum of 5 years of experience in IT risk management and compliance.

Strong understanding of IT risk governance principles and practices.

Experience with cybersecurity regulation requirements and industry standards.

Excellent analytical and problem-solving skills.

Strong communication and interpersonal skills.

Project Leadership

Preferred Qualifications:

Experience with on prem and cloud platforms.

Knowledge of SOC 1, SOC 2, ISO 27001:2022, and HIPAA regulations.

CISA certification.

CRISC certification.