Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.
Go Premium

Remote IT Risk and Compliance Analyst

Remote: 
Full Remote
Contract: 
Full time
Work from: 
Anywhere

Offer summary

Qualifications:

Bachelor's degree in Information Security, Computer Science, or related field., Experience in IT Risk, Compliance, or Governance roles., Knowledge of regulatory standards like SOX, NYDFS, ISO-27001, and NIST CSF., Strong communication skills and experience with GRC tools such as Archer or ServiceNow..

Key responsibilities:

  • Conduct risk assessments and analyze associated risks for systems and environments.
  • Test the effectiveness of IT controls supporting regulatory compliance programs.
  • Collaborate with teams to identify emerging risks and develop mitigation strategies.
  • Create reports for various stakeholders to facilitate decision-making.

Katalyst HealthCares & Life Sciences logo
Katalyst HealthCares & Life Sciences Pharmaceuticals SME https://www.katalysthls.com/
51 - 200 Employees
See all jobs

Job description

Job Description
We are seeking a skilled and experienced cross-functional Governance, Risk, and Compliance consultant that can work with IT Compliance and IT Risk on assessments, testing, reporting, and risk analysis within the Information Security Program.

Key Responsibilities:
Assessments: Perform Risk Assessments to ensure proper design and associated risks (inherent and residual) for systems, environments, and domains analyzed.
Ability or understanding to gather information to determine threat event frequencies, loss event frequencies, susceptibility, and impact.

Testing: Ability to test the design and operating effectiveness of quarterly/re-occurring IT controls that support our regulatory assessment programs (SOX, NYDFS, etc.).
Ability to determine proper design of processes and ineffective processes and key elements of an effective process design.
Understanding of key control points and able to perform walkthroughs and/or review of evidence to determine operating effectiveness.

Risk Identification and Mitigation: Collaborate with cross-functional teams to identify emerging risks, assess their potential impact on the organization, and develop mitigation strategies.

Reporting: Ability to contribute towards creating reports for different audiences for IT and non-IT stakeholders (senior management, executive leadership, system owners, and relevant stakeholders) to facilitate decision-making and drive continuous improvement efforts.

Preferred Qualifications:
  • Experience with conducting IT/Cybersecurity audits, risk assessments, privacy assessments.
  • Familiarity with CMMI, FAIR, NIST CSF, ISO-27001, CSC 18, and Privacy regulations.
  • Experience with providing remediation recommendations for issues/findings.
  • Experience with GRC tools (such as Archer, ServiceNow, etc.) and project management tools (Jira).
  • Ability to lead walkthroughs and assessments with minimal oversight.
  • Highly effective communication skills for management and sr. leadership

Required profile

Experience

Industry :
Pharmaceuticals
Spoken language(s):
English
Check out the description to know which languages are mandatory.

Hard Skills

IT Risk ManagementRisk AnalysisCompliance ManagementInternal ControlsEmerging RiskRisk AnalysisGRC SoftwareISO/IEC 27000 SeriesProject ManagementPrivacy Law

Other Skills

  • Governance
  • Problem Reporting
  • Collaboration
  • Communication
Are you interested?

Risk and Compliance Analyst Related jobs

See more Risk and Compliance Analyst jobs