Senior Information Security GRC Analyst (Remote)

Serigor Inc.


Job Location:

Columbia, SC - USA

Monthly Salary: Not Disclosed
Posted on: 11 days ago
Vacancies: 1 Vacancy

Job Summary

Job Title: Senior Information Security GRC Analyst (Remote)

Location: Columbia SC

Duration: 12 Months

Daily Duties / Responsibilities:

  • Interviewing business and technical owners to determine policies and procedures used for each agency process.
  • Developing and tracking infosec implementation plan progress.
  • Documenting information gathered during both interviews and Document reviews to assist with developing formal process and procedures.
  • Assessing agency documentation to ensure adequate approaches are used to comply with controls.

Required Education:

  • Bachelors Degree

Required skills (must include years of experience in order of importance):

  • 10 Years of Experience in Information Security and Compliance.
  • 2 Years of Experience with security audits based on a standard control set as an auditor or responding information system security officer
  • Must Have a Strong Working Knowledge of NIST 800-53 (2 Years of Experience)
  • Prior Experience POA&M or CAP.
  • Strong Communication Experience.
  • Experience With Using A GRC Tool (Archer or Similar) (3 Years of Experience)

Preferred Skills (Rank in order of Importance):

  • Have completed an information security plan or system security plan notebook.
  • Simultaneously manage multiple infosec work efforts.
  • Knowledge of IRS 1075 HIPAA CJIS MARS-E and/or PCI-DSS.
  • Government sector experience

Preferred Certifications:

  • CISA GSLC or equivalent certification

Additional Skills:

  • Ability to identify map and re- engineer business processes.
  • Strong schedule management and resource planning skills.
  • Ability to work at a high-volume and fast pace.
  • Strong collaborator and strong ability to meet deadlines.

Job Title: Senior Information Security GRC Analyst (Remote) Location: Columbia SC Duration: 12 Months Daily Duties / Responsibilities: Interviewing business and technical owners to determine policies and procedures used for each agency process. Developing and tracking infosec implementation pl...