Role: IT security with Risk Assessment and GRC

Location: Houston TX

Duration: 3-4 Months

Work schedule 9/80

Mon, Tue, Thur, in office, 7am - 5pm

Wed, Fri- 7a-4pm work from home

Every other Friday off

Role 1 will join my team to learn about Security Architecture review for a month, then GRC for the next 2-3 months
Role 2 will join the GRC team to assist with Risk Assessments, shadow/train new GRC analysts that exist on the team

Both roles will eventually:

Perform daily Risk Assessments to get the queue caught up

Assist with the creation of standardized questions to ask

Create a standardized process flow with Risk Assessment itself

Train entry level GRC analysts on the team so that the team is sustainable once contingent workers are complete with project

Preferred and Requirements for both roles

CISA, CRISC, CISM, CISSP preferred

10 years Risk Assessment/GRC background requirement

Data classification awareness preferred

SOC2, ISO27001 aware

Performing Risk Assessments (OneTrust)

10 years Risk Assessment/GRC background preferred

5 years IT Security Architecture preferred

Data classification awareness preferred

NIST CSF aware preferred

Performing Risk Assessments (OneTrust) required

NIST 800-52 knowledge preferred