Senior GRC Analyst - Remote / Telecommute Job at Cynet Systems, San Jose, CA

WElrTThHbTV3K1lubmE5L01Fa0d3ZDJDcXc9PQ==
  • Cynet Systems
  • San Jose, CA

Job Description

Job Description:


Pay Range $94hr - $98hr


Responsibilities:
  • Support the GRC operating model and the service-oriented customer engagement model.
  • Provide Cybersecurity Risk Management leadership and operational delivery of the program.
  • Support GRC capabilities, such as compliance and audit management, policy management, security awareness training, third party risk management, and metrics and reporting.
  • ssist to manage security compliance programs and activities that support various compliance regulations.
  • Perform risk assessments to address security threats, changes to systems and applications, process improvement initiatives, supplier assessments (including downstream outsourcers) and other requests from the business.
  • Collaborate with various operational and business teams to complete assessments, develop treatment plans, and drive remediation items to closure.
  • Maintain accurate reporting of remediation activities to bring appropriate visibility to stakeholders and leadership.
  • Monitor the security risk profiles and events of our suppliers to objectively determine high risk suppliers that require additional review and treatment plans.
  • Establish and maintain security metrics and reporting.
  • Respond to customer security/compliance questionnaires.
  • ct as security risk management "ambassador" to internal customers.
ccountable:
  • The use of defined risk methodologies and best practices to perform IT/Security assessments.
  • Responsible for the planning, scoping, tracking, and execution of these assessments.
  • Driving remediation activities from identification, treatment plan, remediation, and closure.
  • Hold owners accountable to delivery of remediation solutions within the agreed upon/reasonable SLA.
  • Operations and improvements of security audit and compliance programs to support various compliance regulations.
  • Operationalization of a metrics and reporting function to continually report on meaningful security, risk and compliance metrics for operational and executive management.
  • Support the automation of KRIs and KPI reporting that align with operational/business risk areas and corporate risk.
Qualifications:
  • Candidates must have at least 7 years working in governance, risk and compliance and information security and risk management, and at least 5 in risk management.
  • Functional knowledge of the CISSP security domains and information security industry standard and best practices.
  • Functional knowledge of applicable security regulatory and compliance requirements (SOX, GDPR).
  • Functional knowledge of ISMS governance models and analysis of certification reports (i.e. ISO 27001, SOC, CAIQ), information security roles, security controls.
  • bility to communicate risk methodologies and concepts to business units and IT teams.
  • Demonstrated experience with controls definition, development, implementation and assessment.
  • Strong interpersonal skills and ability to work effectively with diverse and globally distributed teams.
  • Strong attention to detail, project management and organizational skills.
  • Self-starter with the ability to effectively manage independent workloads asynchronously with stakeholders across multiple time zones.
  • bility to independently lead program areas and cross-functional teams to deliver high quality results according to well-defined planning.
  • Define and communicate program and activity plans and roadmaps, and effectively collaborate with all business and IT groups to achieve goals.

Job Tags

Remote job,

Similar Jobs

Pierre Strand

Work From Home Salesperson Job at Pierre Strand

 ...customer success - Advise customers on how to successfully leverage the product/service based on their unique needs. Maintain working product knowledge - Act as a product expert to ensure information given to customers is accurate, up-to-date and strategic. Track... 

Workoo Technologies

Remote Data Entry Assistant Job at Workoo Technologies

About the job Remote Data Entry Assistant Many thanks you for checking us out. Work kind Home Information Entry (Part-Time). We are actually searching for folks that are encouraged to work coming from property and participate in paid research study all over... 

Al West Inc.

Automotive Parts & Logistics Manager Job at Al West Inc.

Parts & Logistics ManagerLocation: Al West NissanJob Type: Full-TimeAbout Us: Al West Nissan is seeking a dedicated and organized Parts...  ..., excellent organizational skills, and a passion for the automotive industry, we want to hear from you!Job Summary: We are... 

Global Resource Solutions, Inc.

Security Escort Job at Global Resource Solutions, Inc.

 ...orientated, and talented individual for the position of Security Escort. Job Description: Summary: The Escort is primarily...  ...assigned to meet business needs. Requirement: Minimum High School Diploma or GED Must be at least 21 years of age. U.S.... 

Johnston Community College

PT Culinary Instructor (Prisons) Job at Johnston Community College

 ...disabilities to perform the essential functions. The North Carolina Department of Public Safety requires all persons that enter the prison to be completely vaccinated. Proof of vaccination is required for employment. This position does not have benefits. 01...