- Minimum 2 years of experience in a cybersecurity discipline, with a preferred emphasis on risk and compliance
- Minimum 3 years of experience working with IT infrastructure, enterprise applications, and cloud technologies (Microsoft Azure and O365)
- Experience auditing information systems and handling audit requests from internal or external parties
- Understanding of compliance requirements and cybersecurity frameworks (SOX, SOC2 , NIST, CIS, etc.)
- Knowledge of identity management and disaster recovery
- Knowledge of GRC tools and techniques (i.e. ZenGRC, OneTrust, Archer)
- Ability to successfully manage third-party audits, compile evidence, and organize audit responses
- Attention to detail and exemplary organizational skills
- Effective written and verbal communication skills and the capability to communicate with cross-functional teams
- Proven analytical and problem-solving abilities for managing initiatives that advance corporate goals
Physical Demands
The physical demands described here represent those required for an employee to successfully perform the role’s essential functions. Reasonable accommodation may be made for individuals with disabilities to perform their major responsibilities.
While performing the duties of this job, the employee is regularly required to sit, stand, or walk; use hands to manipulate, handle, or feel; reach with hands and arms; stoop or bend; and talk or hear. The employee must occasionally lift and/or move up to 20 lbs.
Work Environment
The work environment characteristics described here represent environmental conditions an employee will encounter while performing the role’s essential functions. The noise level in some work environments can be moderate and an employee may encounter extreme weather conditions while performing major duties. Reasonable accommodation may be provided for individuals with disabilities to perform their major responsibilities.
Disclaimer
The information provided in this job description indicates the general nature and level of work performed by employees within the role’s classification. This job description is not to be interpreted as a comprehensive inventory of all duties, responsibilities, qualifications required of employees assigned to this role.