Cyber Security Analyst
Washington, District of Columbia, United States · മുഴുവൻ സമയവും
അപേക്ഷിക്കുന്ന ആദ്യയാളാകൂ
- അനുഭവം
- 4+ വർഷം
- ശമ്പളം
- USD 80,000 – USD 90,000 / year
- ഓപ്പണിംഗുകൾ
- 1
- പോസ്റ്റ് ചെയ്തു
- 4 മണിക്കൂർ മുമ്പ്
- പ്രവർത്തന രീതി
- ഓഫീസിൽ
- വിദ്യാഭ്യാസം
- Bachelor's degree in Cyber Security, IT, Information Systems or related field
- യോഗ്യത
- Candidates must be legally authorized to work in the United States without needing sponsorship.
- പുനരാരംഭിക്കുക
- അപേക്ഷിക്കാൻ നിർബന്ധം
നിങ്ങൾ എവിടെ ജോലി ചെയ്യും
ജോലി വിവരണം
About the Role
Aaratech Inc., a technology-oriented company specializing in cybersecurity, healthcare, and enterprise sectors, seeks a Cyber Security Governance, Risk, and Compliance (GRC) Analyst to enhance the organization's security posture. The position involves managing security frameworks, supporting audit readiness, conducting risk evaluations, and ensuring adherence to industry compliance standards.
Key Duties
- Assist in control testing and gather evidence to meet NIST, ISO 27001, and SOC 2 standards.
- Perform compliance gap analyses and monitor the progress of remediation measures.
- Create and update security policies, standards, and compliance documentation to reflect current requirements.
- Execute risk assessments for third-party vendors.
- Work collaboratively with IT, security, and business units during audit and compliance processes.
- Compile audit documentation, reports, and compliance evidence to prepare for reviews.
Candidate Profile
- Holds a Bachelor's degree in Cyber Security, Information Technology, Information Systems, or a related discipline.
- Possesses over 4 years of relevant experience in IT audit, governance, risk management, or compliance roles.
- Familiar with security control frameworks such as NIST, ISO 27001, and SOC 2.
- Experienced in supporting audit efforts, compliance projects, and managing policy documentation.
- Exhibits strong organizational, analytical, communication, and problem-solving abilities.
Preferred Credentials
- CISA certification is advantageous.
- Certifications or training related to NIST or ISO 27001 are desirable.
- Experience in SOC 2 compliance and vendor risk management is beneficial.
- Additional certifications like CRISC, CGRC, or ISO 27001 Lead Implementer/Lead Auditor add value.
Additional Information
Compensation ranges from $80,000 to $90,000 annually and is negotiable. Candidates must be authorized to work in the United States without sponsorship.