We are hiring for a GRC Analyst in the Greater St. Louis, MO area!
This candidate will play a key role in regulatory compliance, IT risk management, security. You'll assess risks, support audits, and develop policies that align with industry standards. If you have a solid IT security background, experience in regulating environments, and a proactive mindset, we want to hear from you!
Responsibilities:
- Will be reviewing and completing security questionnaires
- Reviewing compliance and security reports
- IT Compliance
- Work with Legal, Privacy, and Compliance to monitor and assess client and regulatory requirement changes to ensure that the IT program fulfills client and regulatory obligations.
- Risk Assessment and Management
- Audit and Monitoring
- Conduct audits to assess IT compliance with policies, standards, and regulations.
- Security Operations and Incident Response
- Assist cyber incident handling as part of the computer incident response team.
- Assist in the maintenance, governance, and execution of Threat and Vulnerability Management processes.
Must have skills:
- 3+ years in similar environment.
- Experience reviewing and completing security questionnaires.
- Experience reviewing compliance and security reports (SOC 2, PCI, ISO, etc.)
- Experience working cross-functionally to achieve objectives.
- Experience performing security and due diligence reviews of vendors.
- In-depth knowledge in information security best practices and frameworks.
- Bachelor's degree in information systems, computer science, or other relevant discipline strongly preferred.
- One or more of the following certifications is preferred: CISA, CRISC, CISSP, SSCP, Security+.
6506