Vacancy expired!
Job Description
Being a member of Enterprise Security Governance Risk and Compliance team provides an exciting opportunity to be part of an innovative and dedicated team of security and audit professionals.The Governance, Risk & Compliance Analyst will be responsible for the security governance, risk management, and compliance across the enterprise. They will establish corporate security requirements by evaluating business strategies and requirements, researching information security standards, performing risk assessments, identifying integration issues, and provide recommendations for remediating identified risk. Additionally, they will be part of the review and formal approval process for policy updates. A significant responsibility will be to ensure Information Security Policy and Standard documents meet or exceed industry standards, compliance requirements and customer/client expectations and maintaining the Information Security Program documentation.Qualifications Basic Qualifications- At least 6 years of total combined related work experience and completed higher education including:
- At least 1 year of information systems security work experience
- At least 5 years of additional work experience directly related to the duties of the job and/or completed higher education including:
- Bachelor's degree in Information Systems, Computer Science, Computer Engineering, Software Engineering, Mathematics, Accounting or related field
- Experience with information security risk management
- Experience with data privacy/protection
- Experience with ISO 31000, 27005, 27001, HIPAA and/or other risk-centric standards and practices helpful
- Demonstrates the ability to work on multiple projects simultaneously and prioritize work to meet adapting deadlines
- At least 2 years of experience with/in FISMA, NIST Risk Management Framework, NIST 800-53 Security Controls, CNSSI 1253 and privacy overlay controls
- Security+, SANS GIAC, CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager) or CISMP (Certificate in Information Security Management Principles)
- Plan, conduct, and document security compliance assessments based on a variety of standards, laws, and regulations
- Develop detailed recommendations for mitigating findings and process improvement projects
- Willing to work additional or irregular hours as needed and allowed by local regulations
- Work in accordance with corporate and organizational security policies and procedures, understand personal role in safeguarding corporate and client assets, and take appropriate action to prevent and report any compromises of security within scope of position
- Perform other responsibilities as assigned
- Must be willing to live or reside in Kansas City or live in a virtually approved city
- ID: #23543799
- State: Missouri Kansas city 64101 Kansas city USA
- City: Kansas city
- Salary: USD TBD TBD
- Job type: Permanent
- Showed: 2021-11-27
- Deadline: 2022-01-25
- Category: Security