Job Description

Direct message the job poster from netPolarity, Inc. (Saicon Consultants, Inc.) Senior Recruiter @ netPolarity (A Saicon Consultants Inc. company) | Corporate Recruiting, Internal Recruitment Title: Senior GRC Analyst Duration: 6 Months (Potential to be extended) Rate: $70/Hour on W2 Job Description: Senior Security Governance, Risk, Compliance (GRC) Analyst Reporting to the Director of Information Security, Governance, Risk, and Compliance, the Senior GRC Analyst will contribute to the development and operational execution of the program, including risk management and compliance with standards and regulations such as ISO27001 and EU GDPR. Responsibilities: Support the GRC operating model and the service-oriented customer engagement model. Provide Cybersecurity Risk Management leadership and operational delivery of the program. Support GRC capabilities, such as compliance and audit management, policy management, security awareness training, third-party risk management, and metrics and reporting. Assist in managing security compliance programs and activities that support various compliance regulations. Perform risk assessments to address security threats, changes to systems and/or applications, process improvement initiatives, supplier assessments (including downstream outsourcers) and other requests from the business. Collaborate with various operational and business teams to complete assessments, develop treatment plans, and drive remediation items to closure. Maintain accurate reporting of remediation activities to bring appropriate visibility to stakeholders and leadership. Monitor the security risk profiles and events of our suppliers to objectively determine high-risk suppliers that require additional review and treatment plans. Establish and maintain security metrics and reporting. Respond to customer security/compliance questionnaires. Act as security risk management “ambassador” to internal customers. Accountable for: The use of defined risk methodologies and best practices to perform IT/Security assessments. Responsible for the planning, scoping, tracking, and execution of these assessments. Driving remediation activities from identification, treatment plan, remediation, and closure. Hold owners accountable for the delivery of the remediation solution within the agreed-upon/reasonable SLA. Operations and improvements of security audit and compliance programs to support various compliance regulations. Operationalization of a metrics and reporting function to continually report on meaningful security, risk, and compliance metrics for operational and executive management. Support the automation of KRIs and KPI reporting that align with operational/business risk areas and corporate risk. Qualifications: Candidate must have at least 7 years of working experience in governance, risk, and compliance and/or information security and risk management, and at least 5 years in risk management. Functional knowledge of the CISSP security domains and information security industry standards and best practices. Functional knowledge of applicable security regulatory and compliance requirements (SOX, GDPR). Functional knowledge of ISMS governance models and analysis of certification reports (i.e., ISO 27001, SOC, CAIQ), information security roles, and security controls. Ability to communicate risk methodologies and concepts to business units and IT teams. Demonstrated experience with controls definition, development, implementation, and assessment. Strong interpersonal skills and ability to work effectively with diverse and globally distributed teams. Strong attention to detail, project management, and organizational skills. Self-starter with the ability to effectively manage independent workloads asynchronously with stakeholders across multiple time zones. Ability to independently lead program areas and cross-functional teams to deliver high-quality results according to well-defined planning. Define and communicate program and activity plans and roadmaps and effectively collaborate with all business and IT groups to achieve goals. Seniority level Seniority level Mid-Senior level Employment type Employment type Contract Job function Job function Information Technology Industries Computer and Network Security and Security and Investigations Referrals increase your chances of interviewing at netPolarity, Inc. (Saicon Consultants, Inc.) by 2x Get notified about new Cyber Security Consultant jobs in San Jose, CA . Consulting Director, DFIR, Reactive Services (Unit 42) - Remote Consulting Director, Specialized Services, Proactive Services (Unit 42) - Remote Principal Consultant, Cyber Risk Management Advisory, Proactive Services (Unit 42) - Remote Sunnyvale, CA $105,000.00-$160,000.00 1 week ago Sunnyvale, CA $105,000.00-$160,000.00 2 weeks ago Sr. Security Advisor, Falcon Complete (Remote) Sunnyvale, CA $110,000.00-$190,000.00 23 hours ago Platform Professional Services Consultant (Remote) Sunnyvale, CA $80,000.00-$130,000.00 1 day ago Enterprise Security Advisor/Architect - Data Security Sr. Consultant, Platform Professional Services (Remote) Sunnyvale, CA $105,000.00-$160,000.00 2 weeks ago Sr. Director, Identity and Access Management (IAM) (Remote) Sunnyvale, CA $210,000.00-$310,000.00 23 hours ago Fremont, CA $140,000.00-$160,000.00 1 week ago We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI. #J-18808-Ljbffr netPolarity, Inc. (Saicon Consultants, Inc.)

Job Tags

Similar Jobs