Information Risk Analyst II

Posted · Add Comment
Published: January 18, 2018
Location
Job Type
Salary
Based on Experience

Description

VantageLinks is a dedicated Information Technology (IT) staffing company supporting our clients with all their IT Needs. We currently have an opening for an Information Risk Analyst II with one of our premier clients.

THIS IS A DIRECT ROLE WITH OUR CLIENT. WE ARE UNABLE TO ACCEPT H1B CANDIDATES AND PLEASE NO STAFFING AGENCIES.

Job description
Position Purpose:

  • Analyze IT data to assess risk and improve processes and efficiency.
  • Make actionable recommendations to mitigate risk.
  • Design, monitor and evaluate controls for effectiveness and efficiency to mitigate areas of risks
  • Prepare and document standard procedures and protocols.
  • Assess application risks, system risks and data processes within IT and address risks with applicable general controls and recommend solutions
  • Review and prepare scheduled audit reports from both internal and external requests
  • Design application and system level controls in adherence to best auditing and security practices
  • Interact with business owners to identify key controls and coordinate appropriate measurement efforts for process improvement
  • Complete optimization reviews and prepare audit reports associated with the completion of scheduled audits
  • Assist with designing the IT environment to conform to relevant industry standards, such as ISO 27001, HIPAA, Sarbanes-Oxley, PCI-DSS, NIST and other related state requirements
  • Assist with evaluation of controls against security best practices
  • Serve as primary liaison between auditing bodies, IT security management, compliance and business stakeholders
  • Assist with implementation of department strategy related information systems and technology architecture

Qualifications:
Education/Experience: Bachelor's degree in IT, MIS or related field or equivalent experience. 3+ years of combined auditing and IT controls design experience. Knowledge of IT systems and processes and experience evaluating internal technical control systems required.

Licenses/Certifications:  CISSP, CRISC, CISM, or CISA Preferred

What are the 3-4 non-negotiable requirements on this position?
Previous experience as an IT Risk Analyst (3+years) with Bachelor’s Degree. 7+ years of experience without a degree. Knowledge of IT systems and processes and experience evaluating internal technical control systems required. Experience designing the IT environment to conform to relevant industry standards, such as ISO 27001, HIPAA, Sarbanes-Oxley, PCI-DSS, NIST and other related state requirements Experience with evaluation of controls against security best practices Knowledge of IT systems and processes and experience evaluating internal technical control systems required. Experience designing the IT environment to conform to relevant industry standards, such as ISO 27001, HIPAA, Sarbanes-Oxley, PCI-DSS, NIST and other related state requirements Experience with evaluation of controls against security best practices

What are the nice-to-have skills?
Licenses/Certifications: CISSP, CRISC, CISM, or CISA Preferred

Apply
Drop files here browse files ...

Related Jobs

ERP Analyst II   St. Louis, MO new
February 15, 2018
Project Lead ASE - .NET/Python   Creve Coeur, MO new
February 14, 2018
February 13, 2018
February 9, 2018
Are you sure you want to delete this file?
/