Fulltime GRC ANALYST ROLE

Fulltime GRC ANALYST ROLE

NO VISA SPONSORSHIP IS AVAILABLE

4 days hybrid work in Woodbridge, NJ

SKILLS AND TRAINING REQUIRED:

Experience and understanding of various regulatory requirements and laws, including but not limited to PCI, SOX, and GLBA. Additional experience in one or more of the following: ISO 27001/2 or NIST.

Capacity to understand legacy and progressive technology and security controls along with respective risks.

Strong understanding of risk management principles, methodologies, and frameworks.

Excellent communication and interpersonal skills, with the ability to interact effectively with stakeholders at all levels of the organization.

Demonstrated problem-solving capabilities, and ability to manage complex local and security requirements.

Self-motivated, directed and well-organized, with the vision to position controls in anticipation of threats.

WORK EXPERIENCE:

3-5 years’ experience in cybersecurity as a practitioner and experience with various security

frameworks.

KEYRESPONSIBILITIES:

Conduct enterprise-wide, ongoing risk analysis in tandem with strategic business partners. 20%

Manage security standards, policies, and practices on an annual basis to make sure they meet corporate demands 20%

Manage risk and vulnerability assessments, validation testing, compliance reviews, and audits in accordance with NIST standards. Analyze findings, and document, recommend and report program gaps to management. 20%

Collaborate with Vendor Management to provide oversight of third parties, vendors and business partners to safeguard against undue risk presentedby external entities. Escalate to security management and business unit leads when points of weakness are discovered. 20%

Thanks

Annu Gulati

Nutech Information Systems