GRC Analyst Job at ASCENDING LLC, Richmond, VA

cjNLUzd5UnNMUjY2QUFtTHZ0MVhZQ1NqRWc9PQ==
  • ASCENDING LLC
  • Richmond, VA

Job Description

Location: HYBRID 601 S Belvidere St, Richmond, VA 23220 Job Overview: The Information Security and Privacy Specialist will play a critical role in ensuring the organization's information security controls are effectively implemented and maintained. This position will involve working with stakeholders across various business areas, as well as with external vendors, to ensure the highest level of security compliance is achieved. The role includes participating in Information Security and Privacy initiatives, maintaining security documentation, assisting in project management, and contributing to the development and implementation of security standards. Key Responsibilities: Lead and contribute to Information Security and Privacy efforts across all business units and vendor engagements, ensuring the application and adherence to appropriate security controls. Utilize a Governance Risk and Compliance (GRC) system to manage and update security-related information, records, and documentation. Collaborate with business stakeholders to develop and maintain Information System Security Plans (SSP). Represent the Information Security Office (ISO) in PMO-led projects, ensuring appropriate ISO representation in significant business initiatives. Work cross-functionally with various teams and users to identify business challenges, propose security solutions, facilitate compliance, and communicate security-related updates clearly and effectively. Support the development and ongoing maintenance of information security standards and processes, including conducting research from reputable sources. Assist in creating controls documentation, including system diagrams, risk assessments, and control narrative drafts for business approval. Review vendor contracts, agreements, and documentation to ensure they include adequate information security protections. Required Qualifications: A minimum of 3 years of demonstrated experience in Information Security governance, risk, and compliance. Strong knowledge of information security principles and practices. Extensive understanding of IT infrastructure planning, implementation, and management with an emphasis on security. Ability to manage workload independently, prioritize tasks, and meet deadlines with minimal supervision. Familiarity or experience with security frameworks such as NIST, ISO 27001, COBIT, etc. Superior organizational skills and keen attention to detail. Ability to adapt to ambiguous situations and re-prioritize tasks as necessary. Experience drafting and updating Information Security and Privacy policies, standards, and procedures. Ability to interpret and analyze security documentation, including flow diagrams and process maps. Understanding of contract terms and conditions, particularly regarding security protections. Proficiency in creating diagrams, flowcharts, and spreadsheets using desktop software. Strong written communication skills, with the ability to write clearly and concisely for various audiences. Preferred Qualifications: Bachelor's degree in Computer Science, Information Systems, or a related field. Relevant certifications such as Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP). Experience in the financial services industry. Knowledge of controls related to cloud security and application security. Understanding of regulatory compliance requirements, including GLBA, GDPR, PCI, and other privacy regulations such as GDPR, CCPA, and VCDPA. ASCENDING LLC

Job Tags

Contract work,

Similar Jobs

BOXABL INC

Marketing Manager Job at BOXABL INC

 ...partnership opportunities to expand market presence. Experience and Education: Knowledge of marketing practices including advertising and market research. Bachelor's degree in marketing, business administration, or a related field (Master's preferred). Proven... 

PetSmart, Inc.

Early Morning Stocker Job at PetSmart, Inc.

 ...PetSmart, Inc. - 2202-731 Stoneridge Pkwy [Retail Associate / Team Member] As an Early Morning Stocker at PetSmart, Inc., you'll: Ensure shelves and storage areas are stocked with the right product; Unpack and break down merchandise cartons and pallets; Display advertising... 

United Software Group

Salesforce Architect Job at United Software Group

Position: Salesforce ArchitectLocation: San Jose, CA (On-site)Experience: 10-12 years Technical Skills Required:Salesforce Integration, Data Migration, API, LWCSales Cloud, Service Cloud, Customer 360, and Agile methodologies United Software Group

Geisinger

Patient Care Technician - Full Time Days/Evening Rotation - Geisinger South Wilkes Barre Emergency Department Job at Geisinger

 ...mental health visits, work-life support, digital self-help tools and more ~ Voluntary benefits including accident, critical illness, hospital indemnity insurance, identity theft protection, universal life and pet and legal insurance ~ Shared governance structure that... 

MedFleet, LLC

Assistant Communications Supervisor Job at MedFleet, LLC

 ...The Assistant Communications Supervisor oversees the daily activities within the Communications Center and is directly responsible for the activities...  ...Qualifications: Possess and maintain current Medical Prioritys Emergency Medical Dispatch (EMD) One (1) year...