Job Summary

A company is looking for a Lead IT GRC Risk Analyst.

Responsibilities:

• Facilitate risk identification and mitigation discussions by analyzing and recommending operational and business workflow changes
• Perform vendor risk assessments, contract reviews, and support the completion of 3rd party security questionnaires
• Develop relationships across various levels of the Enterprise Risk Management, Internal Audit, and Technology organization

Qualifications:

• Minimum of four (4) years' experience in Information Security, Technology, and/or IT Risk
• Associate degree combined with 5 years' experience in an IT-related role; or, Bachelor's Degree plus 3 years' experience in an IT-related role; or, Master's Degree in Information Security, Information Technology or Information
• Sophisticated knowledge of IT Governance, Risk Management, and Compliance concepts
• Experience with ISO 27001/2 and NIST 800-171/DFARS
• Knowledge of technical platforms, networks, security concepts, and data retrieval techniques