Senior Information Security GRC Analyst at Chandra Technologies | Torre
warning

Heads-up

The job you’re trying to post already exists in Torre:

Senior Information Security GRC Analyst

You'll elevate statewide security posture, governance, and compliance for public sector agencies.
Emma highlights
This highlight was written by Emma’s AI. Ask Emma to edit it.
Full-time

Legal agreement: Employment

Provide your expected compensation while applying
location_on
Remote (anywhere)
Match
skeleton-gauges
You have opted out of job matches in .
To undo this, go to the 'Skills and Interests' section of your preferences.
Review preferences
Shared by
Emma of Torre.ai
9 days ago

Requirements and responsibilities


ResponsibilitiesSupport agencies in developing and implementing information security programsConduct security compliance assessments and reviewsEvaluate security controls against NIST 800-53 requirementsDevelop and maintain security documentation and compliance artifactsConduct stakeholder interviews and gather security evidenceIdentify security gaps and recommend remediation plansManage POA&M and Corrective Action Plans (CAP)Assist agencies in improving security maturity and governance processesSupport audit readiness and compliance initiativesCollaborate with business, technical, and leadership teamsTrack security implementation plans and compliance activitiesSupport statewide security governance initiativesRequired Experience10+ years of Information Security, Risk, Compliance, or Governance experience2+ years of Security Audit experience as: Information System Security Officer (ISSO), Security Auditor, Compliance AnalystStrong experience with NIST 800-53 FrameworkHands-on experience with: Governance, Risk & Compliance (GRC); Security Assessments; Compliance Reviews; Risk Analysis; Control ValidationExperience managing: POA&M (Plans of Action and Milestones); CAP (Corrective Action Plans)3+ years of experience with: Archer GRC, RSA Archer, Similar GRC PlatformsStrong documentation, reporting, and stakeholder communication skillsPreferred SkillsSystem Security Plans (SSP)Information Security PlansGovernment/Public Sector experienceCompliance Frameworks: IRS 1075, HIPAA, CJIS, MARS-E, PCI-DSSSecurity Governance Program ManagementEducationBachelor's Degree RequiredPreferred CertificationsCISAGSLCCISSPCRISCCGRC (Formerly CAP)Equivalent Information Security CertificationsHiring: Senior Information Security GRC Analyst100% RemoteDuration: 12 Months (Possible Extension)Client: Chandra TechnologiesEnd Client: State of South Carolina – Division of Information Security (DIS)Employment Type: W2 ONLY
Optionally, you can add more information later (benefits, pre-screening questions, etc.)
check_circle

Payment confirmed

A member of the Torre team will contact you shortly

In the meantime, continue adding information to your job opening.