What are the responsibilities and job description for the GRC Analyst (Experience with Risk Register) position at Atinfo Technology Inc?
Job Details
- Need at least 5 years of experience in one or more domains of information security such as vendor risk management, security governance, security operations.
- They will be responsible for identifying, assessing, and mitigating IT risks while ensuring the organization adheres to relevant regulations, standards, and policies.
- Experience working on Federal agency programs such as FedRAMP is preferred.
- They will be responsible for conducting risk assessments, developing and updating security policies, coordinating audits, responding to security incidents, and training.
- The role requires collaboration with other teams and staying current on evolving security threats and regulatory landscapes.
- Ensure compliance with local, state, and federal regulations, as well as industry standards and frameworks such as ISO 27001, NIST, CSF, CCSK.
- Support security incident response activities, including data collection and analysis.
- Contribute to the development of security requirements for new projects and systems.
- Monitor the effectiveness of security controls.
- Experience with AI governance is preferred.
- One of the following certifications are preferred: CRISK, CSA, CISSP.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.
Salary : $40 - $45