IT Risk & Compliance Analyst

04 Jun 2024

Vacancy expired!

OTSI (Object Technology Solutions, Inc.) has an immediate opening (Direct Hire) for an IT Risk and Compliance Analyst. This will be hybrid working model based in St. Louis, MO. The IT Risk and Compliance Analyst assists in the administration, maintenance, development and/or implementation of risk management procedures to ensure controls are adequate and effective for information systems and business functions. Performs regular risk management and technology compliance functions and plays key role in supporting technology, cybersecurity, and ongoing compliance-related activities.

PRINCIPAL RESPONSIBILITIES AND DUTIES:
  • Partners with technology teams to perform research and analysis required for designing, and implementing, Cass’ information security and technical controls.
  • Participates in the translation of regulatory driven requirements and makes recommendations for improvements where possible.
  • Ensures controls and risks are documented and updated as needed.
  • Performs coordination and tracking of open audit and policy exceptions.
  • Conducts reviews to ensure that remediation or mitigation plans are completed in a timely manner.
  • Prepares key reporting metrics and dashboards on a regular basis.
  • Develops communications for IT risk management and compliance activities for staff within all business units and offices.
  • Assists in maintaining risk management policies, standards, processes, and procedures.
  • Provides coordination for creation and review of remediation plans.
  • Ensures proper log monitoring, reporting and escalation occurs.
  • Reviews third party contract agreements and validates required controls are adequately represented.
  • When assigned, serve as lead for security and compliance projects. This includes communicating across technical organizations and creating design, testing, and deployment plans.

SKILLS AND ABILITIES REQUIRED:
  • Strong analytical skills, to analyze the effectiveness of IT General Controls.
  • Basic knowledge of Microsoft Windows Operating Systems.
  • Strong knowledge of industry frameworks and processes, such as International Organization for Standardization (ISO), National Institute of Standards and Technology (NIST) and IT Service Management (ITSM).
  • Fundamental knowledge of regulatory compliance laws and guidelines: GDPR, Privacy Shield, SOX, and FFIEC.
  • Ability to adapt to changing business processes, technologies, and environments.
  • Strong written and verbal communication skills.
  • Excellent organizational skills.
  • Ability to train others on risk management concepts.
  • Demonstrated ability to work effectively with a team.

MINIMUM LEVEL OF PREPARATION AND TRAINING NORMALLY REQUIRED:
  • Bachelor’s degree in Management Information Systems, Information Security or related field.
  • 2-4 years of experience in Information Security and Information Technology audit.
  • CISA, CRISC or other relevant security certifications are highly desirable.

  • ID: #42381782
  • State: Missouri St louis 63011 St louis USA
  • City: St louis
  • Salary: $0 - $0
  • Job type: Permanent
  • Showed: 2022-06-04
  • Deadline: 2022-07-16
  • Category: Et cetera