Job Description
A client of Insight Global is seeking an IT GRC Analyst to sit REMOTELY:
- Support the development, implementation, and management of collaborative GRC programs across the organization, including policies, procedures, and controls.
- Assist in the development and maintenance of information security and data protection policies, procedures, and controls that align with industry standards and regulatory requirements.
- Support the management and development of programs to ensure that technology systems are compliant with Information Security & Data Protection policies and standards.
- Assist in ensuring that GRC programs align with business objectives and are compliant with relevant legal and regulatory requirements.
- Support the monitoring and ensuring compliance with regulatory requirements, industry standards, and best practices.
- Contribute to risk assessments and support the development of risk management plans to mitigate risks and provide reporting on findings.
- Support the development and delivery of training programs to increase awareness of information security and compliance requirements and best practices.
- Collaborate with legal and audit teams to ensure compliance with regulatory and legal requirements.
- Assist in conducting technology compliance assessments and audits, and monitor compliance metrics to identify areas of non-compliance and develop corrective actions.
- Participate in steering committee activities related to GRC, partnering with other respective compliance stakeholders.
- Serve as a subject matter expert on compliance-related matters and provide guidance to internal teams on regulatory compliance issues.
- Support the development and maintenance of an Information Technology risk management framework that identifies and assesses risks associated with our technology systems and develops strategies to mitigate those risks.
- Provide guidance and support to business units on compliance and risk management matters.
- Collaborate with the finance organization to develop and implement strategies to prevent fraud and other types of financial crimes.
- Assist in maintaining relationships with internal stakeholders, external partners, and regulators to ensure ongoing compliance.
- Collaborate with financial compliance teams to design and implement effective internal controls to ensure the integrity of our financial reporting.
- Support the development and delivery of training programs to promote a strong culture of ethical behavior and compliance.
- Support the management of internal and external audits and assessments and develop and implement corrective action plans as needed.
- Collaborate with other senior leaders to ensure alignment of GRC programs with organizational goals and strategies.
- Monitor and review regulatory changes and industry trends to ensure GRC programs remain effective and relevant.
- Contribute to the development of metrics to track security program effectiveness and to report risk.
Required Skills & Experience
- Bachelor's degree in information technology, Computer Science, or related field is desired
- At least 3 years of experience in information technology, risk management, and compliance management
- Knowledge of regulatory requirements and industry standards such as GDPR, CCPA, SOX, PCI, etc.
- Strong communication, collaboration, and leadership skills
- Experience contributing to implementing successful GRC programs and driving change in an organization.
- Strong analytical and problem-solving skills and effective communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels of the organization
- Experience contributing to leading cross-functional teams and managing projects
- Experience supporting the development and implementation of GRC programs, policies, procedures, and controls
- Experience supporting the conducting of risk assessments and the development of risk management plans
- Professional certification in relevant areas such as CISA, CISSP, CRISC, or similar are highly preferred.
- Ability to travel as needed.
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.