In this role, you will be responsible for supporting Information Security Governance, Risk Management, and Compliance initiatives and projects.
Responsible for maintaining the GRC application including configuration, updating and testing. Assisting GRMC MSSP with resolving any potential performance issues, and upgrades, and assist in the other GRC areas of Governance and Compliance.
Support projects, initiatives and programs of the IS Governance, Risk Management, and Compliance team as requested.
- Work with GRC tool Vendor to coordinate the delivery of the GRC tool and ensure the application is available for internal users and has the expected functionality.
- Track activity, changes in progress, and issues noted and communicate status to the GRMC team as appropriate.
- Act as primary support for TruOps application, administration, maintenance, and configuration.
- Troubleshoot and resolve system performance issues.
- Lead and coordinate application upgrades, software updates / patches, and maintenance items. Liaison with the vendor, coordinate with internal personnel, test functionality, update training material and documentation, communicate changes to users, and facilitate discussions.
- Create and maintain workflows for users, based on process flows defined by the business unit.
- Maintain roles and access and control library.
- Assist with the development, configuration, implementation and maintenance of the IS Risk Register.
- Manage the request for platform enhancement and issues with TruOps.
- Maintain awareness of changes in security risks, security measures, and computer systems assessing new requirements for current and emerging compliance regulations.
- Communicate technical and business problems clearly, and timely in a concise manner to a variety of audiences both internal and external.
- Assist in evaluating the effectiveness of controls in place to mitigate threats and communicate remaining residual risk.
- Provide recommendations to leadership on program effectiveness and enhancements. Report and escalate information security risks appropriately and timely.
- Knowledge of Governance, Risk & Compliance fundamentals such as RSA, MetricStream, IBM or TruOps
- Problem-solving skills, with the ability to manage complex local security requirements
- Written and verbal customer service communication skills, and proven ability to translate security and risk to all levels of the business
- Ability to understand legacy and progressive technology including cloud computing and security controls along with respective risk
- Self-motivated and well-organized, with the vision to position controls in anticipation of threats
- Ability to act with integrity, being inquisitive and adaptable
- Ability to communicate in both technical and business terms, clearly and concisely
- Time management, multitasking, task planning and prioritization skills
- Ability to communicate and gather requirements from large number of project stakeholders
- Knowledge of Word, PowerPoint, Microsoft Excel including data macros and the ability to convert data macros to VBA code modules
- Knowledge of Microsoft Access application (code modules, forms, queries, reports, tables, references, settings)
- Knowledge of project management methodology and analytical troubleshooting and support skills
- Ability to multitask in a fast-paced environment and attention to details
- Knowledge of regulatory requirements and laws, including but not limited to FFIEC, NCUA, PCI, SOX, HIPAA, Privacy and GLBA.
and ISO 27001 / 2, ITIL or NIST
Knowledge of Governance, Risk & Compliance fundamentals
Education
Minimum 4 Year / Bachelors Degree Computer Science MIS or Related field
Years of Experience
- Minimum 7 years - IT Governance, Risk Management, or Compliance (GRC) as a practitioner or related
- Preferred 2 years - IT, Risk Management, system support analyst
In Lieu of Education :
10 years - Technical expertise, system administrator, GRC application Administrative, IT Governance, Risk Management, or Compliance (GRC) and IT, Risk Management, system support analyst
Certifications :
Preferred : Compliance, Risk Management, or Governance certifications : CRISC, CGEIT, CISM or CISA
As a thank you for joining our team, you’ll benefit from :
- Competitive medical, dental, and free vision benefits
- Paid parental leave
- Competitive compensation plan
- Gym memberships discounts
- Generous PTO and banking holidays off
- Tuition reimbursement
- 401k with immediate employer match and vesting
Senior GRC Systems Admin (TruOps) Analyst
Technical expertise, system administrator, GRC application Administrative, IT Governance, Risk Management, or Compliance (GRC) and IT, Risk Management, system support analyst. Work with GRC tool Vendor to coordinate the delivery of the GRC tool and ensure the application is available for internal us...
Senior Analyst, Finance Systems
TITLE: Senior Analyst, Financial Systems. Analyst, Financial Systems will have the opportunity to develop new skills to handle a diverse range of duties while exercising initiative and independent judgment. This role will provide daily support for our TM1 business intelligence systems applying finan...
Senior Data Analyst - Regulatory Data & Systems
Knowledge of risk systems technology. ...
ServiceNow Senior Business Systems Analyst - Hybrid role
SERVICENOW SENIOR BUSINESS SYSTEMS ANALYST – Hybrid role. Liaison between the business partners and the IT group to support ServiceNow and provide analysis for systems implementation, upgrade, and enhancement projects. Technical tasks can include being able to identify data needs from various system...
Senior Knowledge Analyst - Health Care Systems
As a Senior Knowledge Analyst (SKA) In a Client Focused role in BCG's Health Care Systems group (within the Public Sector Practice Area) you will work in a growing global team, delivering value to clients via individual expertise and/or institutionalized knowledge assets (products, tools, data, work...
Corporate Innovation Systems Technical Senior Analyst
Innovation Tech Analyst plays a critical role in driving the successful implementation and addition of functionality to new and existing portfolio and project management tools to deliver the 10 key capabilities identified as part of the Innovation workstream of the Digital Core Transformation. Exper...
Epic Optimization Systems Analyst Senior - Legacy Archiving Remote
Are you great at making relationships and looking to drive innovation within a mission centered health care organization? We are a growing team looking for a results driven and intellectually curious Senior Epic Systems Analyst with a passion to make a difference. We support optimization projects re...
Senior Business Systems Analyst
The Senior Business Systems analyst will be accountable for understanding the business requirements and system processing implications from Enterprise Data Warehouse (EDW) in our organization. Berkshire Hathaway Specialty Insurance (BHSI) has an exciting opportunity for an experienced Business Syste...
(Global Oil Gas) Senior Business Systems Analyst - Data Science & Artificial Intelligence
Job Summary</b></p> <p>We are seeking a seasoned "Business System Analyst" to serve in the role of "Financial Data Scientist" to join the Digital Solutions & Data Management Division of the Digital Finance Department. Digital Finance Department (DFD) is resp...
Application Analyst Associate, Admin Workforce Systems, Full-time, Days
Develops skills necessary to support assigned services and systems while learning the integration and interaction of all supported services and systems. Executes project tasks as assigned under the direction of the IS Manager, Team Lead, or Senior IS Application Analyst, and executes routine support...