W2 IT Risk & Compliance Analyst Local to Tampa, FL

Overview

On Site
$60 - $65
Contract - W2
Contract - 12 Month(s)

Skills

GRC

Job Details

Please contact Abdul on "" OR email me at ""

4 days on-site 1 day remote (Midtown)

*Could be okay with someone more junior who has light (1-2) years of IT Compliance/IT Audit/Cybersecurity experience but pay would need to reflect the junior level*

Required Skills and Experience

-3+ years of IT security, IT audit or other controls experience

-Experience and knowledge with identifying control gaps, drafting remediation plans, and ushering remediation action plans through completion

-Experience with SOX
-Assurance experience: Audit/IT compliance, compliance assessments, IT governance, GRC tools

Nice to Have Skills and Experience

-CISA or CRISC Certifications

-Experience with PCI controls, NIST Cyber Framework
-Experience with the following: SAP, Service Now, AuditBoard, Splunk, Tenable, CyberArk, risk assessments, vulnerability assessments

Job Description

  • Coordinate efforts to implement SOX controls for in-scope SOX systems and processes. This entails coordinating discussions between stakeholders, validating evidence and driving completion of remediation efforts in a timely manner.
  • Ensures that quality methods and procedures are executed by the IT department to stay in compliance with regulatory requirements, Sarbanes-Oxley (SOX), PCI, contractual requirements.
  • Collect and sample evidence to support demonstration of compliance. Escalates out of compliance items to senior management. Additionally, analyst adheres to company confidentiality and security requirements.
  • Administers IT Compliance Management Systems and Governance, Risk, and Compliance (GRC) tool(s). Participate in the implementation of technology-based tools (e.g. GRC) to support IT risk initiatives.
  • Support collection, review and approval of compliance evidence.
  • Assist in information sharing activities with partner utilities including gathering of metrics and managing of surveys.
  • Documents non-compliance issues, provides recommendations and ushers remediation actions to ensure in their resolution.
  • Monitors and reports on exceptions, risks and exposures to IT senior management.
  • Conducting fact-based assessments of new and existing systems and technologies, Assessing the effectiveness of regulatory compliance controls. Providing subject matter expertise to help internal stakeholders manage risk and controls.

Education: MUST HAVE A BACHELORS DEGREE.

Please contact Abdul on "" OR email me at ""

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.