Enterprise Risk Assessment Analyst

Requirements:

• 5+ years experience performing internal risk assessments with technical teams
• 5+ years experience working in a GRC organization
• 5+ years experience with the following tools: Archer, ServiceNow, JIRA and Rally
• Experience creating User Stories
• Experience creating and implementing control requirements
• Recent experience working in an enterprise environment (Fortune 50)

Nice to Have:

• CRISC and/or CISM Certification

Description:

You will be joining a team of Security Risk professionals who are responsible for working with various departments within the organization to identify inherent and residual risks within the business. You will be responsible for working with project leaders to understand their operations and workflows to scope risk and advise where risks could be mitigated with technical changes. You will register findings and analysis to report to leadership so action can be taken.

-Will be assigned to projects to perform initial scoping to identify security risk within internal departments

-Working with Project Managers and those involved in implementing and delivering on projects

-Analyze diagrams, catalog findings in risk library, and write up assessment for leadership