What are the responsibilities and job description for the IT Risk & Compliance Analyst position at Valcan IT Inc?
Currently we are unable to sponsor. We Encourage to apply & GC***
Job Title: IT Risk & Compliance Analyst
Location: New York, NY (Hybrid)
Experience: 10 Years
Position: (Full Time)
Job Summary:
We are seeking an IT Risk & Compliance Analyst with a strong background in Third-Party Risk Assessment, Internal Security Controls, and Network Security. This role will focus on identifying, assessing, and mitigating cybersecurity risks across internal systems and external vendors while ensuring compliance with industry standards.
Key Responsibilities:
- Lead third-party/vendor risk assessments (SOC 1/SOC 2, security questionnaires, due diligence)
- Manage and maintain risk register, risk assessments, and remediation tracking
- Evaluate and strengthen internal security controls and governance processes
- Support audit & compliance efforts (PCI DSS, NIST, ISO 27001)
- Monitor security threats, vulnerabilities, and incident response activities
- Conduct security control gap assessments across infrastructure and applications
- Collaborate with cross-functional teams to drive risk mitigation strategies
- Support disaster recovery and business continuity planning
Required Skills:
- 6 years in IT Risk, Cybersecurity, or IT Audit
- Strong experience in Third-Party Risk Management (TPRM)
- Hands-on knowledge of network security, vulnerability management, and threat monitoring
- Experience with internal controls, risk frameworks, and compliance standards (PCI DSS, NIST, ISO 27001)
- Exposure to incident response and security operations
- Certifications like CISA, CRISC, or CISSP (preferred)
Salary : $140,000