.bd_title { font-weight: bold; }
This position will focus on evaluating the security controlswithin the enterprise architecture to identify vulnerabilities as part ofSystem Security Plan creation and Authority to Operate processes. Our general assessments measure clientsagainst a subset of the NIST 800-53/800-171 catalog and PCI-DSS catalog ofsecurity and privacy controls. GRC Analyst must have enough IT background toanalyze information and prepare reports defining the client's maturity levelfor each security objective. In addition, the assessor will provide remediationsuggestions to address vulnerabilities and improve the overall security of theenterprise architecture. Assignments will require GRC Analyst to be travel 25%and the rest would be remote.
· Develop and coordinate allauthorization documentation associated including the Systems Categorization,Systems Security Plan, and Security Assessment Report.
· Develop and coordinate allauthorization documentation associated including the Systems Categorization,Systems Security Plan, and Security Assessment Report.
· Review existing SA&Adocumentation, System Security Plan (SSP), Security Assessment Report (SAR),and other supporting artifacts.
· Ensuring the information systemreceives and maintains a valid authority to operate (ATO) at all times.
· Technical background that willassist in complying with the NIST SP 800-53/800-171 and PCI security controlsand gather evidence to support compliance.
· Work effectively as part of a team in a full-time position (M-F, 8AM- 5PM, CST).
· Self-motivated, well organized and able tocomplete multiple tasks accurately.
· US Citizen and must be able to pass backgroundcheck(s)
Subscribe to job alerts and upload your resume!
*By registering with our site, you agree to our
Terms and Privacy Policy.