Title: IT Security/GRC Analyst
Location: Shelton, CT
(4 Days Onsite)
Interview Mode: Phone + Skype
JD: Supports and coordinates the risk and compliance self-assessment activities of the service owners. Will support the key interface of IT in the context of Security, Risk & Compliance activitiesKey Responsibilities
Support Compliance and Security assessment efforts with both external and internal stakeholders
Maintain established trusted relationship with IT Operational Teams (incl. Infrastructure, Enterprise Application & Digital) as well as relevant Security, Risk & Compliance stakeholders in the region and beyond
Further develop and document IT Standards comprising IT GRC relevant aspects
Support stakeholders, develop a holistic approach to authorization management across all technology areas.
Support the Group in defining the future approach to IT Risk & Compliance management in collaboration with Group SecurityDIMENSION
University degree in Computer Science, Information Management or a related field is required; MS in Computer Science or Information Management is a plus.
2+ years of relevant work experience in information protection and/or audit focusing on operational IT controls, controls. Prior experience from international audit firm or another large multinational company.
Solid knowledge in information security principles and practices Proven hands-on expertise in the following areas;
- IT GRC
- Compliance Assessments (e.g. SOX)
- Definition of Internal Controls
- IT Audits
- IT Risk Management
Industry recognized training and certification (e.g. CISA, CRISC
, CISM, CISSP etc.) is a plus.
Solid understanding and knowledge of information security terminology, technology, and concepts. Extensive experience with ISO 27K standards, CoBiT, ITIL, CMM or similar frameworks is desirable.
Information security risk management and compliance, including working with risk management and information security control frameworks such as ISO 27001, 27005, SANS Critical Controls, FAIR, and EBIOS.Himanshu Tripathi
Technical Recruiter Email- email@example.com Phone-