IT Quality Analyst

Job Summary

The Quality Analyst II is a key member of the Client Assurance team. This role is on the front lines of security and policy issues that affect our clients and works to ensure user trust, protect clients, and mitigate legal risk through policy definition, enforcement, and advocacy. Implement strategy to meet the present and future cybersecurity needs of our clients.

Major Duties / Key Responsibilities

 

• The Quality Analyst II must be able to translate the security risk requirements and constraints of the business into technical control requirements and specifications, as well as develop metrics for ongoing performance measurement and reporting.
• Responsible for researching, drafting, and driving process changes for policy and security solutions to better meet client requirements.
• Build relationships with key partners and work with those teams to implement, enforce, and communicate our policies in a clear, objective, and patient way. Drive decisions and implement key changes to improve policy performance over time.
• Manage escalations for complex cases and will participate in calls, audits, and assessments with internal and external clients.
• This is a role that requires an individual with a strong technical background, as well as an ability to work with the IT organization and business management to align priorities and plans with key business objectives. 
• Can successfully prioritize work efforts across cross-functional teams.
• Research and recommend controls and configurations aligned with security policies and legal, regulatory and audit requirements.
• Lead or partner with other teams in the periodic assessment and testing of procedures and systems of internal controls.

Job Requirements

MINIMUM EDUCATION, QUALIFICATIONS AND EXPERIENCE

 

• Bachelor’s degree in business administration, Information Assurance, or related field or equivalent in relevant work experience. (Required)
• Relevant professional certification (CISSP, CISM, CRISC, CISA) is a plus (at least one is preferred)
• Minimum of 3-5 Years of Experience in Information Security.
• Experienced with leading and participating in client audits and assessments.
• Effective communication skills presenting internal control and risk matters in an understandable way across various forums and levels of organization with the right level of detail.
• Assertive when dealing with client and internal requests.
• Experience in a client-facing role (3-5 years)
• Solid understanding and experience with information security frameworks (CIS, NIST, ISO) and with regulatory requirements (HITRUST, SSAE 18, PCI)
• Strong analytical skills. Must have a high skill level in Excel (including pivot tables), understand cloud models and technologies. 
• Strong collaborative and facilitative skills, including relationship building skills.
• Ability to work well on a team, as well as manage multiple priorities in quick time limits.