GRC Analyst

Customer preference experience having worked as GRC analyst in BIG 4 company (EY, Delloitte,PWC or KPMG)Must have skills*
Please make sure not to share Cyber Security Analyst or Cyber Security Engineer roles.
This is a GRC analyst role and the profile should reflect experience around creating standard policies and procedures documents, control documents from scratch for the various departments like Data and IT operations.
Minimum bachelor s degree in information technology, computer science or cyber security systems or related field with 8+ years? experience in IT Security, Audit, Compliance, and Risk Management.
Experience in developing and maintaining IT Policies, procedures, and documentation to ensure alignment with GRC objectives and organization goals.
Experience working with COBIT Framework, Compliance, Risk Management, Security or Audit frameworks (i.e., FFIEC, NIST 800-53)
Experience performing gap analysis to identify areas of improvement in IT GRC processes.
Ability to produce high quality policy documentation.
Strong oral and written communication skills and ability to work well with others in a collaborative, complex and challenging environment, present findings, and provide recommendations.
Must demonstrate good judgment and attention details while prioritizing and delivering wide range of challenges and tasks.
Ability to work effectively in a team and coordinate efforts across different teams to achieve IT GRC goals.
Proficiency in standard office software suites.
Experience working with GRC tools used for risk assessment, compliance monitoring, and reporting.
Strong analytical and critical thinking skills is required to process complex data.
Aptitude for identifying and solving IT GRC-related problems and implementing solutions to improve overall security and compliance posture.