Job Information

Kforce Cyber Security GRC Analyst in Orlando, Florida

Kforce has a client that is seeking a Cyber Security GRC Analyst in Orlando, FL. Summary:The Cyber Security Governance, Risk and Compliance (GRC) Analyst works in support of IT Security compliance requirements and company risk tolerance. This role ensures that adequate and effective security processes, controls, and lifecycles are followed and aligned to deliver compliance with security policy and regulatory requirements. The GRC Analyst supports the security compliance program, tracking completion and remediation of compliance activities, and documenting compliance program evidence. This role works with a wide variety of people from different internal customer organizational units to track and maintain compliance activities throughout the organization when and where IT systems are utilized.Responsibilities:

  • Works as a team member in the Cyber Security Department focusing on IT Security compliance processes and initiatives, acting as the central point of contact and collaborating with other organization units within the company in these matters

  • Supports the security compliance program, ensuring the identification, tracking, prioritization, and remediation of all internal and external compliance requirements; Also supports Internal Audit activities and remediation requirements

  • Ensures adequate and effective IT controls exist to meet applicable current and future security compliance requirements found in laws, regulations, frameworks such as requirements to comply with SOX (Sarbanes-Oxley), SSAE 16 SOC I & II, PCI (Payment Card Industry) Security Standards, HIPAA, state and federal privacy law

  • Bachelor's degree in Computer Science, Information Technology, or a relevant field, or equivalent experience

  • CISA or CISSP certification preferred; MSCE, CISM, and other technical certification strongly preferred

  • 3 years of experience in an IT role focusing on information security and IT compliance

  • Knowledge of regulatory compliance regulations (PCI, SOX, PII)

  • Familiarity with industry standard frameworks such as NIST, ISO 2700x, CIS, etc.

  • Ability to effectively interact with other teams across the organization

  • Ability to manage multiple tasks along a parallel process

  • Knowledge of information technology systems and processes, network infrastructure, data architecture, data processes and protocols

  • Experience with GRC tools (Oracle, RSA Archer, MetricsStream, etc.)

Kforce is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status, or disability status.Compensation Type:Hours