* Build relationships, advocate, and consult to different functional and business stakeholder groups on areas of IT and Security Policy.
* Support development and lead management of security policies, procedures, and standards.
* Manage IT and Security policy review, training, and development schedule.
* Support the risk assessment, risk register, risk treatment, and risk reporting process.
* Support the cybersecurity awareness and training programs, including the phishing simulation program
* Support the customer cyber due diligence and vendor cyber risk processes
* Support general IT Risk Management activities as needed.
* Support and manage compliance metric reporting and dashboard development as needed.
* Perform other duties and responsibilities, as assigned.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
* 3-5+ years' experience R&C, Compliance, IT Governance, CyberSecurity
* Proven ability to draft new policy, procedure, and standard materials and is also comfortable updating existing materials.
o 2+ years experience performing IT or Security assessments or audits.
* Knowledge of common security and controls frameworks: COSO / CoBIT, NIST CSF, NIST 800-53, NIST 800-37, ISO27001, CIS Controls (or equivalent).
* Knowledge with common risk management tools: Archer, ServiceNow IRM, MetricStream, or similar.
* Experience supporting risk management processes including risk register, treatment / remediation, POAM, or reporting.
* CISA or CISSP (preferred).
Benefit packages for this role will start on the 31st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.