Insight Global is looking for an IT Risk Analyst to work for a large, title insurance company. The IT Risk Analyst performs a variety of tasks to accomplish the objectives of the IT Risk Management (ITRM) program, including but not limited to the evaluation of IT and security risks.
* Assesses risks and gathers management's responses and tracks mitigation plans.
* Relies on experience and judgment to plan and accomplish goals.
* Performs a variety of complicated tasks.
* A wide degree of creativity and latitude is expected.
* Performs IT risk assessments covering a variety of the organization's IT processes including, but not limited to: information security, infrastructure, development, change management, logical security.
* Assesses risks and gathers management's responses and tracks mitigation plans.
* Relies on instructions and pre-established guidelines to perform the functions of the job.
Responsibilities Include:
* Working with and supporting the business units and/or business departments in the institutionalization of the ITRM framework
* Assisting with the design and development of the program components
* Management, operationalization and participation in program activities associated with, but not limited to:
o Deployment, completion, and reporting of IT Risk Profiles and Risk Assessments
o Involvement in the IT Risk Mitigation Action Plans
o Participate in the risk assessment workshops.
* Facilitating the review and risk evaluation of new or existing information resources or technology related services
* Facilitating the development and on-going management of risk remediation plans
* Developing and managing a mechanism for the reporting of the various risk and control indicators
* Supporting the development, implementation and maintenance of Risk Assessment frameworks and the Risk Control Self-Assessments
* Preparing status reports and presentations on a timely basis
* This position is a cross-functional role that requires communication and teamwork with other departments in the company and its subsidiaries.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
* 3-5 years of experience IT and Security Risk, Processes, and Controls
* Risk Assessments
* Experience with any GRC related software such as:
* Archer, BeWise, SNOW, etc
* Able to communicate with technical teams and individuals.
* Familiarity with IT and security principles/frameworks -- NIST, COBIT, CSF, CIS, Cloud Controls Matrix, ITIL, and ISO 27001
* Go-getter mentality
* Analytical mindset -- Able to challenge ideas and improve processes.
* CISA, CISSP, CISM, CRISC or CompTIA Security
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.