Associate Security & Privacy Risk Management Specialist
Location : Missouri (Remote)
Position Details :
Under moderate supervision, configures, administers, and launches user access review campaigns. Confirms accuracy by completing quality assurance reviews against validation lists and launched campaigns and promptly and thoroughly addresses any discrepancies through additional campaigns and documentation.
Responsibilities
Principal Duties
- Conduct periodic access reviews and audits to ensure compliance with security policies and regulations.
- Deliver and present control evidence to internal auditors.
- Contribute to the planning and execution of Audit finding remediation.
- Work among various teams within the Identity and Access Management (IAM) department to validate, analyze, and articulate user access controls.
- Develop automated capabilities that support proactive control monitoring, evidence gathering and reporting.
- Ensure the effective testing of all IAM controls, as well as provide timely accurate reporting of the results.
Requirements
Required Experience
- Hands-on knowledge in staging access review campaigns in IdentityNow across Active Directory, Databases, Workday, Servers, and more.
- Experience with compliance frameworks such as Sarbanes-Oxley Act (SOX), Service Organization Controls 2 (SOC 2), National Institute of Standards and Technology (NIST), and Health Insurance Portability and Accountability Act (HIPAA).
- Understanding of information risk management concepts and proven ability to meet strict audit deadlines.
- Advanced knowledge of Identity management concepts, practices, design, and implementation
- Advanced oral and written communication skills demonstrating ability to share and impart knowledge
- Ability to quickly adapt to new methods, work under tight deadlines and stressful conditions
- Advanced investigative, analytical and problem solving skills
- Advanced ability to set goals and handle multiple tasks, clients, and projects simultaneously
- Ability to appropriately balance priorities, deadlines, and deliverables
- Ability to work well within a team environment and participate in department / team projects
- Ability to balance detail with departmental goals / objectives
- Advanced ability to translate business needs and problems into viable / accepted solutions
- Advanced skills in customer relationship management and change management
- Ability to manage multiple projects or teams and set applicable goals
- Advanced negotiating and persuasion skills
- Ability to liaise with individuals across a wide variety of operational, functional, and technical disciplines
Work Experience
- Preferred : 2-4 years experience with SOX / SOC1 / SOC2 audits over Se
4 days ago