Risk Analyst (GRC) at Tech Army, LLC in Boca Raton, Florida

Posted in Other about 2 hours ago.

Type: full-time




Job Description:

This role, titled GRC Risk Analyst, focuses on leading the IT security risk and audit program at the Florida Turnpike Enterprise. The individual will be responsible for managing and mitigating risks within the organization, assessing compliance with cybersecurity standards, and coordinating remediation efforts for identified vulnerabilities.

Key Responsibilities:
  1. IT Audit and Risk Management: Perform audits and risk assessments using standards like NIST, ISO, PCI, and ISACA, and ensure compliance with these frameworks.
  2. Security Controls Evaluation: Assess the effectiveness of technical, physical, and administrative security controls and manage remediation of identified gaps.
  3. Compliance Reviews: Conduct PCI, SOC2, and ISO reviews to ensure the organization's infrastructure adheres to required standards.
  4. Risk Management Strategy: Develop and maintain a risk and compliance matrix, and provide strategies for mitigating identified risks.
  5. Third-Party Risk Management (TPRM): Oversee third-party risks and analyze SOC-2 reporting to ensure compliance with security frameworks like NIST and PCI.
  6. Vulnerability Management: Manage IT security vulnerabilities in line with PCI and NIST standards and coordinate remediation efforts.
  7. Critical Asset Protection: Identify sensitive operations and assets, estimate potential losses from threats, and recommend cost-effective mitigation strategies.
  8. Audit Reporting: Document and report audit findings, coordinate remediation, and ensure compliance with ISACA audit standards.


Required Skills & Experience:
  • 7-10 years of IT audit experience (CISA certification preferred).
  • 3 years of experience managing IT risk throughout its lifecycle.
  • 3 years of hands-on experience in technical roles (e.g., developer or system administrator).
  • Strong knowledge of NIST 800-30 for risk assessments.
  • Advanced skills in business process mapping, documentation, and policy development.
  • Recent experience in information security with knowledge of the current threat landscape.
  • Solid understanding of PCI DSS standards.

Education and Certifications:
  • Bachelor's degree in Computer Science, Information Systems, Business Administration, or related field, or equivalent work experience.
  • Preferred certifications: CISA (Certified Information Systems Auditor) and CISSP (Certified Information Systems Security Professional).

More jobs in Boca Raton, Florida
Other
about 1 hour ago
Store Director - Panerai

Kodak Group
Boca Raton, Florida
Other
about 1 hour ago
Chief Financial Officer

Confidential Posting
Boca Raton, Florida
Other
about 1 hour ago
Director of Supply Chain

SystemsAccountants
Boca Raton, Florida
More jobs in Other
Other
less than a minute ago
Sony Home Theater Specialist

Best Buy
Springfield, Missouri
Other
less than a minute ago
Remote Tax Supervisor / Early Tax Manager

CyberCoders
Fort Worth, Texas
Other
less than a minute ago
Remote Tax Supervisor / Early Tax Manager

CyberCoders
Dallas, Texas

  • About
  • disABLEDperson, Inc. is a 501(c)3 non-profit organization whose mission is to reduce the high unemployment rate of individuals with disabilities.
  • "We are simply here to serve."
© 1999 - 2024 Disabled Person, Inc. | Terms and Privacy Policy