IT Governance, Risk and Compliance Analyst

Overview

Hybrid
$50 - $60
Contract - W2
Contract - 6 Month(s)

Skills

Governance
Risk
Compliance
COBIT
CMMI
ITIL
NIST

Job Details

Job Title: IT Governance, Risk and Compliance Analyst (IT GRC Analyst)
Position Type: Contract for 6 months.
Job Location: 14221 N Dallas Pky, Ste 1100 | Dallas, Texas 75254 (Hybrid: 3 days office 2 days remote)

Description:

Our client is seeking an IT Governance, Risk and Compliance Analyst. The IT GRC Analyst designs, implements, and assesses risk mitigation strategies as defined by Information Risk Management. This role is involved in documenting and monitoring the controls associated with IT and cyber risk and compliance as well as following up on non-compliance remediation activities.

What you'll do:

  • Develop strategies for attaining greater compliance and reducing risks.
  • Plan, design, and document control procedures for all IT work areas.
  • Assess compliance based on applicable COBIT/CMMI/ITIL/NIST standards and frameworks.
  • Track and report corrective action for identified deficiencies, execute follow-up validation of remediated controls, and perform walkthroughs of key IT General Control processes.
  • Assess regulatory compliance with SOX, GDPR, HIPAA, etc.
  • Perform 3rd party risk assessments.
  • Develop and deliver written communications as well as make presentations to introduce, educate and update management as required.
  • Provide training, mentoring, and support to teams in areas of risk and compliance.
  • Where appropriate, train business and IT users on key IT governance areas

Qualifications - External

  • Bachelor's or Technical Degree or equivalent experience
  • Industry equivalent experience with certifications or specialized training will be considered.
  • 7 or more years of work experience with 5 or more years of work experience in IT governance and compliance roles
  • Strong knowledge of two or more of the following: COBIT, CMMI, ITIL, and NIST standards for software / systems /project development, management, and life cycles
  • Risk management (evaluating risks using a framework, establishing policies and controls to mitigate risk), compliance (designing of tests, executing compliance monitoring), and frameworks such as COBIT and NIST.
  • Experience with Process Improvement Methodology including defining and documenting process flow diagrams.
  • Excellent critical thinking and problem-solving skills.
  • Excellent oral and written communication skills, strong interpersonal and relationship skills.
  • Strong conflict resolution and negotiation skills.
  • Broad understanding of all IT areas, including infrastructure, development, cybersecurity, auditing, and internal controls.
  • Good time management skills (i.e. plans work accurately and works efficiently).
  • Ability to work within a team environment as well as independently.