Previous Job
Risk and Compliance Analyst
Ref No.: 18-00021
Location: NY, New York
Risk & Compliance Analyst
Note: Position is located in Princeton, NJ location.
Excellent benefits package!

Prestigious Client seeks to hire a Risk & Compliance Analyst to build out their Information Security team. This position reports to the CISO. This is an opportunity to grow with the team and have exposure to multiple technologies and challenges. The Analyst will work on multiple security and risk management initiatives to improve the processes and technologies.

  • Support vulnerability and risk assessment projects.
  • Documenting and updating elements of IT security governance (e.g. policies, procedures, standards).
  • Utilize GRC platforms to demonstrate maturity of security program and compliance metrics
  • Coordinate compliance efforts (SOX, GDPR, PCI, etc.)
  • Align Security program with maturity metrics (based on NIST) and recommend prioritizations to reduce risk and improve program maturity
  • Support information security inquiries and audits.
  • Compiling and reporting of metrics.
  • Assist in managing IT incidents and resulting Security investigations.
  • Crosstrain with and assist Security Operations and Application Security functions as needed

Skills and Experience:
  • 3 years of experience
  • Understanding of NIST frameworks and standards
  • Knowledge of one or more compliance standards-SOX, GDPR, PCI
  • Functional understanding of GRC platforms (ProcessUnity, Resolver, OneTrust)
  • Willingness to learn and work with changing requirements
  • Ability to work with multiple teams within IT and the business
  • Understanding of common Information Security concepts, practices, and procedures
• Communication, documentation, and presentation skills
• Basic understanding of Infrastructure, Networking, and Cloud Computing concepts

The following are a plus:
  • Bachelor's degree in computer science or related field