Find The Job That's Right For You
Browse available positions near you.
Accelerate Professional Talent Solutions
https://www.acceleratepros.com/wp-content/uploads/2021/08/JB-Square-200x200-1.png
https://www.acceleratepros.com
https://www.acceleratepros.com
true
IT Risk & Compliance Analyst
1330 Bellevue Street Green Bay, WI 54302 US
Posted: 05/19/2023
2023-05-19
2023-06-28
Employment Type:
Direct Hire
Job Category: Information Technology
Job Number: 16233
Job Description
Position Title: IT Risk & Compliance Analyst
Responsibilities:
Governance and Compliance
- Develop and implement security policies, procedures, standards, and guidelines in alignment with the organization’s Cybersecurity program and CMMC framework
- Design and document technical, administrative, and physical controls to ensure organizational compliance
- Develop and maintain the IT Security risk register and risk reporting framework
- Facilitate the remediation of control gaps
- Coordinate and perform internal and external assessments to ensure compliance
- Assist in the development and maintenance of business recovery plans to ensure timely and effective restoration of data and IT services in the event of an incident
Supply Chain and Vendor Risk Management
- Perform supplier/vendor risk assessments to ensure supply chain risk is managed throughout the partner’s lifecycle
- Communicate results of assessments to organizational stakeholders
- Assist with reviewing and updating IT Security content in supplier/vendor contracts, identifying gaps, and recommending remedial steps
- Maintain inventory of suppliers/vendors, secure scores, controls, and risks for ongoing management of vendor risks
Workforce Training and Awareness
- Develop and administer the organizational security awareness training program
- Audit internal and third-party compliance to awareness training requirements
- Assist in developing organizational Knowledge, Skills, and Abilities (KSA) requirements
Requirements:
- Bachelor's degree in computer science or related field; or 4 years of relevant work experience
- 3+ years of relevant work experience in a risk/compliance role preferred
- Certifications/Licenses: CISSP, CRISC, or equivalent preferred
- Knowledge of information security principles, including risk assessment, threat and vulnerability management, incident response, and awareness training
- Demonstrated understanding of the Cybersecurity Maturity Model Certification (CMMC) or other NIST frameworks
- Knowledge of governance, risk, and compliance frameworks and practices
- Practical experience with security-related systems and applications
- Experience with developing and maintaining security documentation
- Regular attendance
- Frequent interaction with others
- Domestic travel up to 5% of time
- Ability to sit up to 50% of time
- Ability to talk or hear up to 100% of time
- Ability to lift or exert force up to 25 lbs. up to 5% of time
- Work in high, precarious places up to 5% of time
For other opportunities available at Accelerate Professional Talent Solutions, a division of QPS Employment Group, go to https://www.acceleratepros.com
Responsibilities:
Governance and Compliance
- Develop and implement security policies, procedures, standards, and guidelines in alignment with the organization’s Cybersecurity program and CMMC framework
- Design and document technical, administrative, and physical controls to ensure organizational compliance
- Develop and maintain the IT Security risk register and risk reporting framework
- Facilitate the remediation of control gaps
- Coordinate and perform internal and external assessments to ensure compliance
- Assist in the development and maintenance of business recovery plans to ensure timely and effective restoration of data and IT services in the event of an incident
Supply Chain and Vendor Risk Management
- Perform supplier/vendor risk assessments to ensure supply chain risk is managed throughout the partner’s lifecycle
- Communicate results of assessments to organizational stakeholders
- Assist with reviewing and updating IT Security content in supplier/vendor contracts, identifying gaps, and recommending remedial steps
- Maintain inventory of suppliers/vendors, secure scores, controls, and risks for ongoing management of vendor risks
Workforce Training and Awareness
- Develop and administer the organizational security awareness training program
- Audit internal and third-party compliance to awareness training requirements
- Assist in developing organizational Knowledge, Skills, and Abilities (KSA) requirements
Requirements:
- Bachelor's degree in computer science or related field; or 4 years of relevant work experience
- 3+ years of relevant work experience in a risk/compliance role preferred
- Certifications/Licenses: CISSP, CRISC, or equivalent preferred
- Knowledge of information security principles, including risk assessment, threat and vulnerability management, incident response, and awareness training
- Demonstrated understanding of the Cybersecurity Maturity Model Certification (CMMC) or other NIST frameworks
- Knowledge of governance, risk, and compliance frameworks and practices
- Practical experience with security-related systems and applications
- Experience with developing and maintaining security documentation
- Regular attendance
- Frequent interaction with others
- Domestic travel up to 5% of time
- Ability to sit up to 50% of time
- Ability to talk or hear up to 100% of time
- Ability to lift or exert force up to 25 lbs. up to 5% of time
- Work in high, precarious places up to 5% of time
For other opportunities available at Accelerate Professional Talent Solutions, a division of QPS Employment Group, go to https://www.acceleratepros.com