Previous Job
Previous
Security Engineer/Security Analyst
Ref No.: 17-01780
Location: Eden Prairie, Minnesota
Start Date: 04/03/2017
The Security GRC Analysts are responsible for working across IT, with internal audit, external audit and other departments to implement and executive on a comprehensive IT compliance program. This role is responsible to coordinate and report on IT portions of internal and external audits, review findings and work with the impacted areas to develop, track, and complete remediation plans.
The Analyst role will work with the GRC management to execute and maintain a robust IT compliance program that proactively manages audits and assessments and risks to the enterprise. These roles will also contribute to the Identity and Access Governance program, security policy and standard development, and cyber security awareness program.

Deliverables
Strong PCI experience (ISA certification or QSA preferred)
Ability to work with all levels throughout the organization (Technicians to C-Level)
Strong project management skills
Strong negotiation skills

Job Requirements
Bachelor's degree or a related
• Plans for upcoming audits and assessments, documents assessment procedures, and related outcomes / findings.
• Conducts security risk assessments as assigned within the approved IT compliance program and department and professional standards.
• Provides assistance to internal and external auditors under supervision of department management.
• Determines threats, identify risks and vulnerabilities to the organization, maintains and updates control framework, under the direction of management.
• Assists in maintaining the compliance control matrix and associated testing to ensure a solid and adequate control structure is in place.
• Assists with responses to customer security questionnaires.
• Assists with content development for the enterprise cyber security awareness program
• Participates in department meetings and assists with department initiatives as assigned.