Governance, Risk & Compliance Security Analyst

Cerner Corporation
Kansas city, MO
27 Nov 2024

Vacancy expired!

Job Description

Being a member of Enterprise Security Governance Risk and Compliance team provides an exciting opportunity to be part of an innovative and dedicated team of security and audit professionals.

The Governance, Risk & Compliance Analyst will be responsible for the security governance, risk management, and compliance across the enterprise. They will establish corporate security requirements by evaluating business strategies and requirements, researching information security standards, performing risk assessments, identifying integration issues, and provide recommendations for remediating identified risk. Additionally, they will be part of the review and formal approval process for policy updates. A significant responsibility will be to ensure Information Security Policy and Standard documents meet or exceed industry standards, compliance requirements and customer/client expectations and maintaining the Information Security Program documentation.

Qualifications

Basic Qualifications
  • At least 6 years of total combined related work experience and completed higher education including:
    • At least 1 year of information systems security work experience
    • At least 5 years of additional work experience directly related to the duties of the job and/or completed higher education including:
      • Bachelor's degree in Information Systems, Computer Science, Computer Engineering, Software Engineering, Mathematics, Accounting or related field

Preferred Qualifications
  • Experience with information security risk management
  • Experience with data privacy/protection
  • Experience with ISO 31000, 27005, 27001, HIPAA and/or other risk-centric standards and practices helpful
  • Demonstrates the ability to work on multiple projects simultaneously and prioritize work to meet adapting deadlines
  • At least 2 years of experience with/in FISMA, NIST Risk Management Framework, NIST 800-53 Security Controls, CNSSI 1253 and privacy overlay controls
  • Security+, SANS GIAC, CISSP (Certified Information Systems Security Professional), CISM (Certified Information Security Manager) or CISMP (Certificate in Information Security Management Principles)
  • Plan, conduct, and document security compliance assessments based on a variety of standards, laws, and regulations
  • Develop detailed recommendations for mitigating findings and process improvement projects

Expectations
  • Willing to work additional or irregular hours as needed and allowed by local regulations
  • Work in accordance with corporate and organizational security policies and procedures, understand personal role in safeguarding corporate and client assets, and take appropriate action to prevent and report any compromises of security within scope of position
  • Perform other responsibilities as assigned
  • Must be willing to live or reside in Kansas City or live in a virtually approved city

Applicants for U.S. based positions with Cerner Corporation must be legally authorized to work in the United States. Verification of employment eligibility will be required at the time of hire. Visa sponsorship is not available for this position.

As of December 8, 2021, as a condition of employment, all US-based employees must be fully vaccinated against COVID-19 unless a medical or religious exemption is approved.

Some Cerner positions may be obligated to comply with additional client-facing requirements and occupational health requests, including but not limited to, an immunization set, an annual flu shot, an annual TB screen, an updated background check, and/or an updated drug screen.

Cerner is a place where people are encouraged to innovate with confidence and focus on what is important - people's health and the care they receive. We are transforming health care by developing tools and technologies that make it more efficient for care providers and patients to navigate the complexity of our health. From single offices to entire countries, Cerner solutions are licensed at more than 25,000 facilities in over 35 countries.

Cerner's policy is to provide equal opportunity to all people without regard to race, color, religion, national origin, ancestry, marital status, veteran status, age, disability, pregnancy, genetic information, citizenship status, sex, sexual orientation, gender identity or any other legally protected category. Cerner is proud to be a drug-free workplace.

EEO is the Law (English)E-Verify Participation (English)Right to Work (English)

EEO is the Law (Spanish)E-Verify Participation (Spanish)Right to Work (Spanish)
  • ID: #23543799
  • State: Missouri Kansas city 64101 Kansas city USA
  • City: Kansas city
  • Salary: USD TBD TBD
  • Job type: Permanent
  • Showed: 2021-11-27
  • Deadline: 2022-01-25
  • Category: Security