Description
IT Risk Analyst (IT Governance & Compliance)
Skills: Risk Analyst, Identify and assess risk, PMI, CMMI, COBIT, ISO 27002, PCI-DSS, HIPAA
Summary:
You will serve as the primary point of contact regarding compliance requirements, risk controls, reporting, issues, legal requests, and awareness training initiatives for assigned IT stakeholders. Your role is to gather, analyze, and communicate status updates and compliance performance metrics to stakeholders. Participate on Information Security teams responsible for conducting risk assessments on new system development initiatives. Plan and coordinate quarterly audits of IT risk controls related to information security, data privacy and SDLC; including communicating requirements, gathering the evidence, reviewing and documenting findings.
Responsibilities:
- Process Compliance Oversight & Risk Control Auditing
- Utilize data analysis, document reviews, and audits of risk controls to monitor adherence to establish IT processes and best practices
- Work on process compliance teams responsible for developing and/or modify processes and tools in accordance with industry standards and best practices (PMI/CMMI/COBIT/ISO 27002/PCI-DSS/HIPAA)
- Develop work paper comments & action plans to address audit findings; coordinate corrective action plans with impacted functional areas; and follow-up to ensure compliance
- Support internal audit initiatives (ie answer questions, provide evidence)
- Conduct entitlement/access reviews in support of various data privacy initiatives
- Coordinate/gather annual updates to organizational Business Continuity/Disaster Recovery plan
- Conduct IT project quality audits to ensure SOX/COBIT compliance; work with project manager to resolve non-compliant areas
Qualifications:
- SOX/COBIT compliance
- 5+ years of experience as an IT Risk Analyst
- Experience developing and/or modifying processes and tools in accordance with industry standards and best practices (PMI/CMMI/COBIT/ISO 27002/PCI-DSS/HIPAA)
Benefits:
As an Agile consultant, you'll gain many of the advantages and benefits of being a direct hire, while experiencing the flexibility of consulting. It's the best of both worlds!
Our IT consultants enjoy a wide array of benefits including: medical, dental, 401K, life insurance, Employee Assistance Program and more.