Information Security Analyst GRC

URL: https://www.naukri.com/job-listings-information-security-analyst-grc-resource-access-management-solutions-pvt-ltd-noida-2-to-6-years-180223500789?src=jobsearchDesk&sid=16786091992841398&xp=10&px=1&nignbevent_src=jobsearchDeskGNB

Use URL to apply.

Job description

The Security GRC Analyst will be responsible for

• Responding/supporting client security assessments including due diligence activity, compliance questionnaires, vendor assurance, and RFPs in a timely, accurate, and effective manner
• Work closely with GRC team to do periodic assessment & audit activities in areas of cloud, identity & data governance, risk and compliance related assessments, policy and procedures, awareness, and training for end users, change management, internal control identification and measurement per applicable guidelines and frameworks: ISO 27001, C5, NIST 800, NIST/CSF, PCI, GDPR etc.
• Support the company in achieving security accreditations such as ISO27001, SOC 2, SOX and C5

Skills and Experience:

• Minimum of 2 years hands-on experience in Information Security or a role that is focused on information technology internal controls design, test, audit, risk assessments, investigations, findings, and remediation.
• Knowledge of policies, standards and frameworks including ISO, NIST 800-53, NIST/CSF, C5, HITRUST, SOX, SOC2 etc.
• Strong written and oral communication skills. Ability to convey complex concepts to non-technical constituents. Proficiency in oral and written English
• Ability to set priorities independently
• Strong project management, analytical and interpersonal skills
• Functional skills such as the ability to direct the action of others, to facilitate meetings, and to report status in a clear and concise manner
• Knowledge and expertise in the use of project management and CI/CD Agile methodologies and tools will be a big plus
• Experience with Microsoft Power BI or similar business analytics tools

Qualifications

• Bachelors Degree in Computer Science, Cybersecurity, Risk Management or equivalent preferred
• If any Certifications are awesome, more the better like: CISSP, CCSP, Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), ISO or equivalents.

Role: System Security Engineer

Industry Type: Recruitment / Staffing

Department IT & Information Security

Employment TypeFull Time, Permanent

Role Category IT Security

Education

UG :Any Graduate

PG :Any Postgraduate

Key Skills

(i) Change management

(ii) ISO

(iii) Project management

(iv) Business analytics

(v) Analytical

About Company

Resource Access Management Solutions Pvt. Ltd.