IT Compliance & Security Risk Analyst

Job#: 3023139

Job Description:

Job Role: IT Compliance & Security Risk Analyst

Location: Charlotte, North Carolina (Hybrid)

Employment Type: Contract

Contract Duration: 12 Months

Role Overview

This role is responsible for completing and tracking compliance deliverables to ensure applications adhere to applicable policies, standards, and local laws, rules, and regulations. The position involves supporting vendors, development teams, and technology managers to ensure technical security, risk, and other compliance activities are completed on-time and per requirements. The successful candidate will partner with control functions, risk management, and Global Information Security (GIS).

Key Responsibilities

• Complete administrative and non-technical tasks related to compliance deliverables, such as access reviews, assessments, and questionnaires.
• Ensure risk, security, and other compliance deliverables are completed on time for supported applications.
• Assist with audit exams and risk assessments for the applications.
• Track and support technical security and risk activities performed by development teams, including remediation of vulnerabilities and disaster recovery exercises.
• Maintain application data in designated systems of record.
• Work with vendors for vendor applications to ensure they meet organizational requirements.
• Facilitate team planning ceremonies against a backlog and manage risks, dependencies, and impediments for the team.
• Contribute to artifacts needed for governance forums and keep stakeholders informed.

Required Qualifications

• Proficiency with Agile tools (Jira, Kanban) and understanding of agile methodology.
• Strong skills in MS Office Suite (PowerPoint, Excel), including pivot tables and macros for data management and reporting.
• Ability to connect multiple data sources to create meaningful analysis for KPI reporting.
• Experience with ITIL processes and weekly report generation.
• Knowledge of software development lifecycles and governance processes.
• Excellent oral and written communication skills, with experience presenting to various levels of leadership.
• Basic understanding of Information Security, Unix/Windows OS, and scripting (e.g., shell scripts).
• Ability to work independently with minimal supervision.

Preferred Qualifications

• Certifications such as CISA, CISSP, CISM, ITILV2, or RHEL.
• Familiarity with business resiliency, risk management principles, and technology change management.
• Experience with Remedy/Nexus ticketing systems, patch deployment, CI/CD, and DevOps.
• Background in InfoSec, including log analysis and audit/compliance.
• Bachelor's degree.

This employer is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.

Apex uses a virtual recruiter as part of the application process. Click for more details.

If you have visited our website in search of information on employment opportunities or to apply for a position, and you require an accommodation in using our website for a search or application, please contact our Benefits Department at or .

Apex Systems is a world-class IT services company that serves thousands of clients across the globe. When you join Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRated's Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Apex uses a virtual recruiter as part of the application process. Click for more details.

Apex Benefits Overview: Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Apex team member can provide.