The Information Technology Governance, Risk, and Compliance Analyst is responsible for the assessing and documenting of the Republic Finance's compliance and risk posture as they relate to governance of its information assets.
The purpose of this position is to provide highly skilled technical and information security expertise for improvement of the information security risk management program. Responsibilities require leadership and project management experience, as well as expertise to ensure effective security analysis; standards and testing; risk assessment; controls assessment, oversight; awareness and education; and development of policies, standards, and guidelines.
- Worked as auditee (not auditor) and coordinated external audits such as SOC 2, ISO 27001, etc.
- Used a tool to maintain control set
- Used a tool to maintain risk register
- Has performed internal risk and controls assessments
- Performed vendor risk assessments
- Has coordinated and responded to external assessments/questionnaires
- BCP/DR experience is a plus
- Penetration Testing coordination experience is a plus
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.