Skills
- Security
- GRC
- Governance
- Risk
- Compliance
- Audit
- Risk Management
- Archer
- COSO
- NIST
Job Description
Lead Security Analyst – GRC
Salary: $140k-$160k + bonus
Location: Hybrid role in Chicago, IL
*We are unable to provide sponsorship for this role*
Qualifications
- Bachelor’s degree
- 5+ years hands-on Information Security or EGRC related work experience.
- Previous work in Compliance, Audit, Risk Management, Project Management, or control activities in the financial services industry
- Proficiency with Microsoft Office Suite, including Word, Excel, and PowerPoint
- Experience using an integrated risk management system (such as RSA Archer Suite) a plus
- Business Intelligence tool experience (i.e., Tableau), a plus
- Broad knowledge of applicable regulatory, legal rules and requirements (e.g., SEC, CFTC, Federal Reserve Board, etc.) as they pertain to Information Security.
- Sound knowledge of and experience working with Security and Technology authoritative industry standards and control framework s (e.g. NIST CSF, NIST 800-53, CIS 20, COBIT, COSO, ITIL, ISO 27001, CSA CCM, etc.)
Responsibilities
- Lead development, implementation, review and improvement of right sized management self-testing of controls.
- Lead Information Security Cyber Security Working Group Program efforts.
- Act on Security Services behalf related to compliance matters including developing and implementing strategies for strengthening the Security Services compliance posture
- Manage Security Services responses to Third-Party requests and surveys
- Perform ad-hoc duties for Security Governance management as necessary