Information Security Analyst GRC

Information Security Analyst GRC
URL: https://www.naukri.com/job-listings-information-security-analyst-grc-resource-access-management-solutions-pvt-ltd-noida-2-to-6-years-180223500789?src=jobsearchDesk&sid=16786091992841398&xp=10&px=1&nignbevent_src=jobsearchDeskGNB
Use URL to apply.
Job description
The Security GRC Analyst will be responsible for
- Responding/supporting client security assessments including due diligence activity, compliance questionnaires, vendor assurance, and RFPs in a timely, accurate, and effective manner
- Work closely with GRC team to do periodic assessment & audit activities in areas of cloud, identity & data governance, risk and compliance related assessments, policy and procedures, awareness, and training for end users, change management, internal control identification and measurement per applicable guidelines and frameworks: ISO 27001, C5, NIST 800, NIST/CSF, PCI, GDPR etc.
- Support the company in achieving security accreditations such as ISO27001, SOC 2, SOX and C5
Skills and Experience:
- Minimum of 2 years hands-on experience in Information Security or a role that is focused on information technology internal controls design, test, audit, risk assessments, investigations, findings, and remediation.
- Knowledge of policies, standards and frameworks including ISO, NIST 800-53, NIST/CSF, C5, HITRUST, SOX, SOC2 etc.
- Strong written and oral communication skills. Ability to convey complex concepts to non-technical constituents. Proficiency in oral and written English
- Ability to set priorities independently
- Strong project management, analytical and interpersonal skills
- Functional skills such as the ability to direct the action of others, to facilitate meetings, and to report status in a clear and concise manner
- Knowledge and expertise in the use of project management and CI/CD Agile methodologies and tools will be a big plus
- Experience with Microsoft Power BI or similar business analytics tools
Qualifications
- Bachelors Degree in Computer Science, Cybersecurity, Risk Management or equivalent preferred
- If any Certifications are awesome, more the better like: CISSP, CCSP, Certified Information Systems Auditor (CISA), Certified Information Systems Manager (CISM), ISO or equivalents.
Role: System Security Engineer
Industry Type: Recruitment / Staffing
Department IT & Information Security
Employment TypeFull Time, Permanent
Role Category IT Security
Education
UG :Any Graduate
PG :Any Postgraduate
Key Skills
(i) Change management
(ii) ISO
(iii) Project management
(iv) Business analytics
(v) Analytical
About Company
Resource Access Management Solutions Pvt. Ltd.
Comments (0)
Facebook Comments