GRC Analyst – Enterprise & Third Party Risk
Irving - Royal 10, United States
USD 80K-100K (estimate) Mid-level Full Time
Tasks
- Address audit findings
- Assess business continuity disaster recovery risk
- Assess control adequacy and effectiveness
- Assess incident response processes from a risk perspective
- Conduct internal risk assessments
- Conduct security awareness training
- Conduct third party vendor due diligence
- Define security risk policies and procedures
- Develop risk dashboards and reports
- Drive remediation efforts
- Embed security requirements into vendor lifecycle
- Evaluate risk exception requests
- Facilitate risk reviews
- Maintain compliance controls
- Maintain risk register
- Monitor third-party risks
- Perform control gap assessments
- Perform risk-based analysis
- Perform third-party risk assessments
- Review vendor contracts for security
- Support IT audit evidence collection
- Track risk exception approvals
Perks/Benefits
- N/A
Skills/Tech-stack
AWS | Access Management | Audit Evidence Collection | Audit evidence | Azure | Business Continuity | CIS Controls | Cloud Security | Cloud platform | Contract Review | Control Assessment | Control remediation | Cybersecurity Framework | Data Classification | Data Protection | Data handling | Disaster Recovery | Encryption | Evidence collection | Exception management | FAIR | GDPR | Google Cloud | Google Cloud Platform | Governance Risk | Governance Risk and Compliance | HIPAA | HITRUST | ISO 27001 | Incident Response | Internal Control | Internal control assessment | Microsoft Excel | Microsoft PowerPoint | NIST Cybersecurity | NIST Cybersecurity Framework | PCI DSS | Policy Management | Quantitative Risk Analysis | Quantitative risk | Risk Analysis | Risk Management | Risk and Compliance | Risk register | Risk-based | Risk-based analysis | SOC 2 | SOX | Secure Data | Secure Data Handling | Third Party | Third-Party Risk | Third-party risk management
Education
Bachelor of Engineering | Bachelor of Science | Master of Science
Related jobs
-
Sr. Cybersecurity Analyst III USD 180K-200KAccess Controls | Data encryption | Firewall | Forensic analysis | Incident Handling401k match | Dental insurance | Dependent care | Employee Assistance and Wellness Programs | Flexible work arrangementsSenior-level Full TimeWashington, DC13h ago
-
Security Operations Engineer I USD 125K-155KAccess Management | Alert triage | Automation | Azure AD | Cortex XDR401k retirement plan | Dental coverage | Medical coverage | Stock options | Vision coverageMid-level Full TimeRedondo Beach16h ago
-
Cybersecurity Director USD 230K-245KAWS | Access Controls | Access Management | Application Security | Audit compliance401k match | Fitness allotment | Health benefits | Mental health resources | Paid time offExecutive-level Full TimeSan Francisco, CA/Hybrid R20h ago
-
Information Security Engineer USD 135K-170K800-171 | 800-53 | AWS GovCloud | Azure Government | Azure SecurityCompany non profit matching | Global volunteer day | Mindfulness app membership | Paid parental leave | Paid time offMid-level Full TimeUnited States; Remote R22h ago
-
Security Governance Consultant USD 198K-273KAI Automation | AI tools | CMMC | Client Advisory | ComplianceRemote workSenior-level Full TimeRemote, United States R1d ago
-
Awareness Training | Compliance | Data Classification | Incident Response | Information securityOnsite workMid-level ContractRichmond, United States1d ago
-
Cyber Security Operations Center Analyst USD 114K-190KAlert Monitoring | ArcSight | Event analysis | Firewall | IDS/IPSRotating shifts | Weekend workMid-level Full TimeUSA-WV-Fairmont1d ago
-
Event Analyst II, Third Party Risk Management USD 55K-95KAudit Readiness | Cybersecurity | Data Analysis | Documentation | FFIEC401k matching | Employee assistance program | Paid Holidays | Paid time off | Tuition reimbursementEntry-level Full Time601 S. Tryon Street, NC R1d ago
-
Chief Information Security Officer USD 150K-170KAccess Management | Awareness Training | Compliance Management | Cyber Security | Cyber security incident responseEvening shift work | On-call availability | Travel to off site facilities | Weekend workExecutive-level Full TimeNew York City, NY, United States1d ago
-
Cyber Security Analyst-Level 2 USD 72K-74K800-53 | Access Control | Access Management | Azure Sentinel | CIS ControlsEntry-level Full TimeNew York City, NY, United States1d ago
-
AWS | Access Control | Active Directory | Azure | BashFamily leave | Health care plan | Paid time off | Retirement plan | Training and developmentSenior-level Full TimeUnited States - Remote R1d ago
-
Exploitation Analyst-Mid USD 86K-198KComputer forensics | Cyber Security | Deobfuscation | Detection Systems | FirewallCareer progression | World-class benefitsSenior-level Full TimeAnnapolis Junction, Maryland, United States1d ago
-
Exploitation Analyst-Senior USD 86K-198KComputer forensics | Cyber Security | Incident Response | Intrusion Detection | Log AnalysisSenior-level Full TimeAnnapolis Junction, Maryland, United States1d ago
-
Computer Network Defense Analyst-Senior USD 104K-166KCellular network | Computer forensics | Cyber incident | Cyber incident response | Detection SystemsSenior-level Full TimeAnnapolis Junction, Maryland, United States1d ago
-
Chief Information Security Officer (CISO) USD 237K-390KAccess Certification | Access Management | Audit evidence | Board reporting | Business Continuity401k retirement plan | Catered lunches | Dental insurance | Disability insurance | Employee assistance programExecutive-level Full TimeAustin, TX / Morristown, NJ (hybrid) R1d ago
-
Chief Information Security Officer (CISO) USD 237K-390KAccess Certification | Access Management | Business Continuity | Control Frameworks | Cybersecurity401k retirement plan | Dental insurance | Employee assistance program | Employer-paid life insurance | Flexible spending accountExecutive-level Full TimeMorristown, NJ / Austin, TX (hybrid) R1d ago
-
Active Directory | Activity monitoring | Alert Tuning | Azure AD | Behavioral BaselinesMid-level Full TimeArlington, VA, United States1d ago
-
Active Directory | Activity monitoring | Azure Active Directory | Behavior analytics | Behavioral analyticsMid-level Full TimeArlington, VA, United States1d ago
-
Risk Management Support Task Lead USD 107K-165K800-37 | ACAS | ATO | AV | Apache401k match | Long-term disability | Medical/Dental/Vision insurance | Paid Holidays | Paid time offSenior-level Full TimeScott Air Force Base, IL, US1d ago
-
ISSO, Journeyman USD 143K-175KAccess Management | Authorization and Accreditation | Configuration Management | Contingency Planning | CybersecuritySenior-level Full TimeOgden, Utah1d ago
-
Information Security Analyst II USD 76K-100KApplication Firewall | Compliance Auditing | Data Loss Prevention | Data loss | Event managementMid-level Full TimeColumbus, Georgia, USA, United States1d ago
-
Sr Technical Lead-Cybersecurity USD 113K-160KAWS | Access Management | Active Directory | Application whitelisting | AzureSenior-level Full TimeUS - NEW JERSEY CLIENT SITE, …1d ago
-
Senior Analyst, GRC USD 126K-214KAudit Support | Automation | CISSP | CMMC | CRISC401k match | AD D Insurance | Adoption reimbursement | Credit union | Disability insuranceSenior-level Full TimeOverland Park, KS, US1d ago
-
Sr. Associate, Information Security Analyst USD 76K-128KAccess Control | Cause analysis | Cryptography | Detection engineering | Endpoint SecuritySenior-level Full TimeIrving, TX, USA - 6555 North …1d ago
-
Information Security Manager USD 120K-155K800-53 | Access Management | Access Review | Bash | CD pipelines401k matching | Catered team lunches | Dental insurance | Dependent care benefits | FSAMid-level Full TimeBoulder, CO1d ago