Overview
Remote
On Site
$50 - $60 hourly
Contract - W2
Contract - Temp
Skills
Policies and procedures
Risk assessment
Information security
Risk management
PCI DSS
ISO/IEC 27001:2005
Attention to detail
SAP GRC
Regulatory Compliance
HIPAA
Payment card industry
Policies
Governance
National Institute of Standards and Technology
Sarbanes-Oxley
Communication
Organized
Leadership
Job Details
RESPONSIBILITIES:
Kforce has a client that is seeking a GRC Security Analyst in Nashville, TN.
Responsibilities:
* GRC Security Analyst will serve as an internal security risk consultant to the organization
* Performs security risk assessments and serves as an internal assessor of security issues
* Monitors compliance with security policies and procedures, referring problems to the appropriate department manager
* Drafts information security policies and procedures for the organization
* As a GRC Security Analyst, you will coordinate and assist in performing User Access Certification campaigns
* Ensures the assessment program continues to meet evolving threat landscape and regulatory (e.g., HIPAA, PCI) requirements
* Ensures vendors are properly vetted and that the security posture of new and existing vendors is known prior to execution of contracts
* Assists with the development and ongoing review of information security policies, standards, guidelines, and procedures
* Actively participates in efforts to define and implement the vision, strategies and goals for the governance, security, risk management and compliance framework and activities
REQUIREMENTS:
* Knowledge of HIPAA, NIST, SOX, PCI DSS and ISO27001 principles, concepts, and practices
* Strong verbal and written communication skills required
* Must be detail oriented, organized, and have strong commitment to deadlines
* High integrity, including maintenance of confidential information
* Must be able to handle multiple, simultaneous tasks effectively and efficiently while maintaining a professional, courteous manner
* Must be able to work well with others
* Must be able to exercise good judgment and positively influence and lead others, including handling confrontations with poise and efficiency
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.
Kforce has a client that is seeking a GRC Security Analyst in Nashville, TN.
Responsibilities:
* GRC Security Analyst will serve as an internal security risk consultant to the organization
* Performs security risk assessments and serves as an internal assessor of security issues
* Monitors compliance with security policies and procedures, referring problems to the appropriate department manager
* Drafts information security policies and procedures for the organization
* As a GRC Security Analyst, you will coordinate and assist in performing User Access Certification campaigns
* Ensures the assessment program continues to meet evolving threat landscape and regulatory (e.g., HIPAA, PCI) requirements
* Ensures vendors are properly vetted and that the security posture of new and existing vendors is known prior to execution of contracts
* Assists with the development and ongoing review of information security policies, standards, guidelines, and procedures
* Actively participates in efforts to define and implement the vision, strategies and goals for the governance, security, risk management and compliance framework and activities
REQUIREMENTS:
* Knowledge of HIPAA, NIST, SOX, PCI DSS and ISO27001 principles, concepts, and practices
* Strong verbal and written communication skills required
* Must be detail oriented, organized, and have strong commitment to deadlines
* High integrity, including maintenance of confidential information
* Must be able to handle multiple, simultaneous tasks effectively and efficiently while maintaining a professional, courteous manner
* Must be able to work well with others
* Must be able to exercise good judgment and positively influence and lead others, including handling confrontations with poise and efficiency
The pay range is the lowest to highest compensation we reasonably in good faith believe we would pay at posting for this role. We may ultimately pay more or less than this range. Employee pay is based on factors like relevant education, qualifications, certifications, experience, skills, seniority, location, performance, union contract and business needs. This range may be modified in the future.
We offer comprehensive benefits including medical/dental/vision insurance, HSA, FSA, 401(k), and life, disability & ADD insurance to eligible employees. Salaried personnel receive paid time off. Hourly employees are not eligible for paid time off unless required by law. Hourly employees on a Service Contract Act project are eligible for paid sick leave.
Note: Pay is not considered compensation until it is earned, vested and determinable. The amount and availability of any compensation remains in Kforce's sole discretion unless and until paid and may be modified in its discretion consistent with the law.
This job is not eligible for bonuses, incentives or commissions.
Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.