Senior Information Security GRC Specialist
Tasks
- Advise leadership on resilience risks and investments
- Assess resilience gaps and risks
- Assess third party resilience capabilities
- Conduct business impact analysis
- Define BC DR frameworks policies and standards
- Define and track resilience KPIs
- Design execute and improve BC DR testing
- Develop IS policies standards and procedures
- Embed resilience into operations and system design
- Evaluate policy exceptions and resilience gaps
- Identify BC DR process improvements and automation
- Lead remediation for identified gaps
- Lead risk assessments
- Lead system tiering
- Manage documentation and compliance reporting
- Monitor regulatory guidance and industry standards
- Own BC DR program
- Report BC DR readiness to leadership
- Run resilience training exercises and communications
- Set RTO RPO recovery expectations
- Translate technical risks into business decisions
Perks/Benefits
- Company 401K
- Company sponsored training and certification opportunities
- Equal employment opportunity
- Health, dental, vision insurance
- Paid time off
- Travel opportunities for first 6 months
- Volunteer opportunities
- Wellness weekends
Skills/Tech-stack
BC DR Testing | BC/DR | Business Continuity | Business Impact Analysis | Business impact | CCPA | CIS Controls | DR testing | Disaster Recovery | FAIR | FFIEC | FISMA | GLBA | Governance Risk | Governance Risk and Compliance | IS Security Governance | IS security | ISACA Risk IT | ISO 22301 | ISO 27001 | ISO 27005 | Impact analysis | NIST | NIST CSF | Octave | PCI DSS | Policy Development | RPO | RTO | Regulatory Compliance | Resilience planning | Risk Assessment | Risk IT | Risk Management | Risk and Compliance | SOC 2 | SOX | Security Governance | Third Party | Third-Party Risk | Third-party risk management
Related jobs
-
Incident Response | Interview Preparation | LinkedIn | Network Security | Product securityCollege degree credit | Employer network access | Job readiness support | Mentoring events | Remote trainingEntry-level InternshipRemote R2h ago
-
Senior Information Security Engineer USD 117K-172K800-53 | Audit Log | Audit Log Analysis | Continuous Monitoring | Control Assessment401k | Dental insurance | Education assistance | Health insurance | Life insuranceSenior-level Full TimeVirtual R6h ago
-
Senior Support Systems Administrator USD 120K-149KAutomation | Backup and Recovery | Contextual Workspaces | Disaster Recovery | DocumentationAnnual L and D budget | Flexible hybrid setup | Health, dental, vision insurance | Home office stipend | Unlimited PTOSenior-level Full TimeRaleigh, North Carolina R1d ago
-
API Security | API security testing | Application Security | Automation | CI/CDDental insurance | Health insurance | Paid time off | Remote work flexibilityExecutive-level Full TimeLisbon, Portugal R1d ago
-
Information Security Engineer INR 800K-1700KAccess Control | Acunetix | Amazon Web Services | Application Security | Burp SuiteFully remote | US business hours remote scheduleMid-level Full TimePune, MAHĀRĀSHTRA, India R1d ago
-
サイバーセキュリティースペシャリスト/ Cybersecurity Specialist JPY 5200K-8500KAsset Management | CSIRT | Compliance Management | Cybersecurity | English (Technical)Mid-level Full TimeTokyo, Sumida-ku, Japan (Hybrid) R1d ago
-
FISMA | HIPAA | ISO 27001 | Incident Response | Information securityRotating on-call support | Rotating shiftsMid-level Full TimeRemote- South Carolina, United States R1d ago
-
Cybersecurity GRC & AI Governance Expert EUR 58K-78KAI Act | AI Governance | AI Risk | AI risk management | Audit RemediationSenior-level Full TimeOut of Home, Czechia R1d ago
-
Computer Security System Specialist USD 104K-160KAuthority to Operate | Authority to Operate (ATO) | Automation | Cybersecurity monitoring | FISMARemote work | Travel as neededMid-level Full TimeWork from home, VA, United States R1d ago
-
GRC Specialist USD 72K-90KAI | AWS | Access Management | Access Recertification | Automation401k matching | Equity ownership | Flex fund stipend | Health coverage | Hybrid workMid-level Full TimeRaleigh, North Carolina, USA R2d ago
-
Security Architecture Specialist BRL 108K-132KApplication Security | Cloud Architecture | Code review | Containerization | Data FlowSenior-level Full TimeRemote R2d ago
-
AI Act | Access reviews | BCMS | BCP/DRP | Business Impact AnalysisCareer growth opportunities | Collaborative and inclusive environment | Remote-friendly culture | Work-life balanceSenior-level Full TimePoland, REMOTE, Poland R2d ago
-
Compliance Management | EHR | EPHI | Epic | FERPAChildcare discounts | Employee assistance program | Employee discounts | Extended illness bank | Health insuranceMid-level Full TimeHybrid, United States R2d ago
-
Compliance Management | EPHI | Electronic Health Records | Epic systems | FERPAEmployee assistance program | Employee discounts | Health insurance | Hybrid remote work | Life insuranceMid-level Full TimeHybrid, United States R2d ago
-
EHR | EPHI | Epic | FERPA | GDPRChildcare discounts | Employee assistance program | Employee discounts | Hybrid remote work | Paid HolidaysMid-level Full TimeHybrid, United States R2d ago
-
IT Security Consultant (w/m/d) EUR 60K-76KActive Directory | Audit management | BSI Grundschutz | Cloud Compliance | Cloud SecurityFull-time position | Professional team support | Remote work available | Unbefristeter VertragEntry-level Full TimeErfurt, DE; remote, Germany R2d ago
-
800-171 | 800-53 | FedRAMP | GDPR | GRCHealth insurance | Life insurance | Other employee benefits | Remote workSenior-level Full TimeRemote, US R2d ago
-
Data Operations Specialist (Remote) USD 55K-62KAWS | Azure | CI/CD | CUI | Cause analysisRemote workMid-level Full TimeBethesda, MD, United States R2d ago
-
Audit management | Compliance Management | Control Testing | HIPAA | ISO 27001Benefits included | Hybrid work schedule | Relocation not providedSenior-level ContractDetroit R3d ago
-
Cloud Security Specialist INR 2000K-3200KAWS | Access Management | Azure | Bash | CNAAPHealthcare benefits | Paid time off | Professional development | Tuition reimbursement | Wellness benefitsSenior-level Full TimeIndia-Telangana-Hyderabad R3d ago
-
Access Management | Active Directory | Audit and compliance | Certificate Lifecycle Management | Certificate lifecycleCultural benefits | Hybrid work | Occupational healthcare | Sports benefits | Work-life balanceSenior-level Full TimeRauma, Finland R3d ago
-
Senior Manager, Cyber Security USD 120K-174KAccess Control | Access Management | CFPB | Cloud Security | Cyber SecuritySenior-level Full TimeOhio - Remote, United States R3d ago
-
Business Information Security Officer EUR 42K-70KCIS Controls | Cloud Security | Compliance Management | Cybersecurity | DevSecOpsCompany pension | Dental care | Employee assistance program | Flexible working hours | Group accident insuranceSenior-level Full TimePoing, Germany R3d ago
-
Director of Information Security USD 120K-160KAccess Control | Application Security | CI/CD | Cloud Security | CybersecurityHealth benefits | Hybrid work | Life insurance | Long-term disability insurance | Paid HolidaysExecutive-level Full TimeMoraine, OH R3d ago
-
Principal Information Security Engineer USD 96K-207KApplication Security | Cloud Security | Containerization | Data Security | Distributed ComputingSenior-level Full TimeVirtual - Ohio, United States R3d ago