Date Posted: 08/27/2024
Hiring Organization: Rose International
Position Number: 469992
Job Title: Information Security GRC Analyst
Job Location: Boston, MA, USA, 02116
Work Model: Hybrid
Employment Type: Temporary
Estimated Duration (In months): 10
Min Hourly Rate($): 50.00
Max Hourly Rate($): 55.00
Must Have Skills/Attributes: Compliance, Data Security, Governance, Information Security, PCI, Risk Analysis
Nice To Have Skills/Attributes: CISSP
Job Description
***Only qualified Information Security GRC Analyst candidates located near the commutable Boston, MA area to be considered due to the position requiring an onsite presence***
GRC is a key pillar of the Client's Information Security program, responsible for the alignment of IT activities to business goals and the management of information security risks. Our GRC program needs your help while we expand our implementation and tracking of security safeguards across the organization. The InfoSec GRC Analyst role will be a member of a 4-person team, reporting to the GRC Lead and will work closely with the Chief Information Security Officer (CISO) and InfoSec Lead.
Required Skills:
• Two plus (2+) years of training or practical experience in IT Operations
• Two plus (2+) years of training or practical experience in Information Security Risk Management
• Strong work ethic, great time management, and highly inclusive team player
• Effective verbal and written communicator, with excellent writing skills
• Authorization to work indefinitely in the U.S.
Preferred Skills:
• Bachelor's degree or equivalent in Cyber/Information Security
• Industry certifications such as CISSP
• Previous experience on a GRC team in a large organization
Information Security Governance Rick Management and Compliance (GRC) Analyst Duties and Responsibilities:
• Ability to read, comprehend, and analyze published:
o laws and regulations, security policies and standards, and information sharing agreements.
o leading security frameworks such as the National Institute of Standards and Technology (NIST) Cyber Security Framework.
o security requirements of the Payment Card Industry Data Security Standard and the maintenance of effective controls in our retail networks.
• Actively participate in risk assessments with the team and facilitate the implementation of security safeguards across IT.
• Develop tracking for ongoing risk mitigation work and the maintenance of security safeguards.
• Track security safeguards for several compliance programs including Payment Card Industry Data Security Standard (PCI-DSS), Social Security Administration (SSA), Federal Motor Carriers Safety Administration (FMCSA), Criminal Justice Information Services (CJIS)
- **Only those lawfully authorized to work in the designated country associated with the position will be considered.**
- **Please note that all Position start dates and duration are estimates and may be reduced or lengthened based upon a client’s business needs and requirements.**
Benefits:
For information and details on employment benefits offered with this position, please visit here. Should you have any questions/concerns, please contact our HR Department via our secure website.
California Pay Equity:
For information and details on pay equity laws in California, please visit the State of California Department of Industrial Relations' website here.
Rose International is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, sexual orientation, gender (expression or identity), national origin, arrest and conviction records, disability, veteran status or any other characteristic protected by law. Positions located in San Francisco and Los Angeles, California will be administered in accordance with their respective Fair Chance Ordinances.
If you need assistance in completing this application, or during any phase of the application, interview, hiring, or employment process, whether due to a disability or otherwise, please contact our HR Department.
Rose International has an official agreement (ID #132522), effective June 30, 2008, with the U.S. Department of Homeland Security, U.S. Citizenship and Immigration Services, Employment Verification Program (E-Verify). (Posting required by OCGA 13/10-91.).