Stratascale Integrated Risk Management & Compliance Analyst

Job SummaryStratascale is seeking a cybersecurity Integrated Risk Management (IRM) Analyst with experience evaluating business processes, identifying needs, and developing strategies to maximize cybersecurity improvements. The candidate would be responsible for working with clients to understand their various risk and compliance processes and to aid in the design, configuration, and testing of technologies to meet those needs.This role will report to the Director of Security Programs - Strategy & Risk within the Stratascale department.This position is remote with a Home Office setup as determined by Stratascale management.About UsAs a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to market demands. We call it Digital Agility.To learn more about how we’re shaping the future of digital business and a more secure world, visit stratascale.com.ResponsibilitiesInclude, but not limited to:

Assess, document, and report on the compliance and risk posture of information assets for Stratascale and its customers

Support internal and external audit processes for relevant compliance

Work with various business units to ensure controls are adequate, appropriate, and effective

Collaborate on the definition of security standards and development organizational policies

Assist with vendor due-diligence processes and help define overall third-party risk management efforts

Support customer information security compliance programs, ensuring IT activities, processes, and procedures meet defined requirements, policies, and regulations

Develop strategies to address awareness and training for all stakeholders as well as technical solutions

Stay informed on current and emerging regulatory and compliance trends and initiatives

Qualifications

Minimum 1-4 years of professional experience

Bachelor’s degree or equivalent combination of education and experience

Team player with strong work ethic with attention to detail

Excellent written, verbal, and consultative skills (e.g., professionalism, collaboration, negotiation, conflict resolution, quick learner, etc.)

Good Interpersonal skills that demonstrate the ability to communicate with both technical and non-technical personnel in cross-functional teams to influence decision making

Strong process and data analysis skills with the ability to communicate systems concepts in a meaningful business context

Proficiency with Microsoft Office Suite (e.g., Word, Excel, PowerPoint, Visio)

Willingness to obtain Industry certifications (e.g., CTPRP, CISSP, CISM, CRISC, CIPP, CISA)

Experience with one or more of the following: TruOps, Prevalent, ServiceNow GRC, Microsoft Compliance Manager and Microsoft Purview, and/or other relevant GRC, Privacy, and/or Risk Management technologies

Required Skills

Experience with third-party risk management tools such as Prevalent, Process Unity, Service Now, and/or KY3P.

Must also have experience working within GRC and Privacy tools such as ZenGRC, TruOps, Archer, Onspring, Logicgate, OneTrust, and/or ServiceNow.

Experience with IT governance, risk, and compliance management in a complex global environment

Familiarity with security frameworks – in particular NIST RMF, NIST CSF, and ISO 27001/27002

Experience with legal and regulatory compliance standards such as NYDFS Cybersecurity Regulation, GDPR, HIPAA, and PCI

Strong understanding of fundamental information security concepts and technology

Ability to develop security standards and guidelines based on best practices and industry standards

Experience in a Business Analyst role with responsibility for facilitating meetings to define / compile business requirements and developing functional / technical documentation, in a client environment

Experience working on systems implementation projects with COTS / 3rd party software, including configuration and testing activities

Experience with Big 4 consulting firms, or other global system integrators a plus

Unique Requirements

Travel up to 10%

Additional Information

The estimated annual pay range for this position is $75,000 - $100,000 which includes a base salary and bonus. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.

Equal Employment Opportunity – M/F/Disability/Protected Veteran Status

Job Wrapping 1#LI-RemoteRefer a friend to this job (https://careers-shi.icims.com/jobs/17332/stratascale-integrated-risk-management-%26-compliance-analyst/job?mode=apply&apply=yes&iniframe=1&hashed=-336032949)Need help finding the right job?We can recommend jobs specifically for you!Job Locations US-Remote | US-NC-CharlotteRequisition ID 2024-17332Approved Min (Total Target Comp) USD $75,000.00/Yr.Approved Max (Total Target Comp) USD $100,000.00/Yr.Compensation Structure Base Plus BonusCategory Administrative/Clerical