Cybersecurity Risk and Compliance Analyst
Our client is seeking an experienced technology auditor or technology risk and compliance analyst with cybersecurity and SOC 2 audit experience to engage in a broad range of activities. This Cybersecurity Risk and Compliance Analyst will assure that controls are designed effectively to meet the desired objectives at any point in time for SOC 2 compliance.
The Cybersecurity Risk and Compliance Analyst is a 3 - 6 month contract to hire opportunity with our client in Cary, NC, and reports to the Director of Cloud Ops and Cybersecurity. Local candidates strongly preferred. No sponsorship or C2C arrangements available.
of the Cybersecurity Risk and Compliance Analyst
Actively manage and help prioritize the corporate cybersecurity risk register and perform periodic cybersecurity risk assessments
Evaluate audit evidence to determine its sufficiency and reliability to meet control objectives and manage evidence repository. Prepare evidence and collaborate with internal technology team members and external auditors and consultants to facilitate cybersecurity audit and consulting engagements
Assist with the requirements analysis and design of effective and efficient information technology and security processes, standards, procedures and controls
Collaborate cross functionally across corporate boundaries to implement policy, procedures, and standards and educate the workforce
Evaluate and recommend controls to mitigate information technology, security and privacy risk
Measure and periodically report cybersecurity related metrics
Monitor the access management process and perform periodic access reviews
Administer privileged access management program and system
Assist with business continuity, disaster recovery planning, coordinate and lead table top exercises
Administer the security awareness training program
Participate in and, potentially lead, security and privacy incident management and response efforts, as necessary
Perform third party and vendor risk evaluations and risk assessments
Facilitate change management process and meetings
Perform routine and periodic technical and non-technical reviews to ensure compliance with security policy, legal requirements, and industry accepted standards
Travel – Less than 15 percent annually including training and corporate events
of the Cybersecurity Risk and Compliance Analyst:
Minimum of Bachelor’s degree in cybersecurity, information systems, business administration or related field; Graduate degree preferred
CISA or CISSP designation
5 to 7 years of SOC 2 (security, availability, processing integrity, confidentiality and privacy)
Cybersecurity framework implementation or audit experience strongly preferred
GSNA, GCCC, or GSEC designations strongly preferred
Strong problem solving, analytical skills, organizational, and project management skills
Strong interpersonal and written communication skills
Self-motivation and the ability to work under minimal supervision
Contact Judy Protz at [Click Here to Email Your Resumé]
or (919)981-6200 x315 with questions regarding this posting. A Word resume is preferred when applying.
When looking for a job, have you ever heard the phrase… it is not about what you know, it is who you know?
At HireNetworks, it really is all about who we know.
Whether your current contract is coming to a close, you’re looking to advance your career or are a company on the hunt for new talent and wanting to expand…let HireNetworks put our networks to work for you.
HireNetworks is an equal opportunity employer.
Careers.org gives you access to over a million jobs and career opportunities across the US including in Cary. Find your perfect job and apply directly through a simply online application process
Website : http://www.hirenetworks.com
Based in Raleigh, N.C., HireNetworks provides strategic recruiting, staffing, vendor management and HR consulting services to blue chip, international and emerging-growth companies. We focus on providing elite, pre-screened personnel for the information technology, life sciences and semiconductor sectors.