The Security Compliance Analyst leads cybersecurity compliance and risk management matters, working closely with IT team members and business partners. This position impacts James River's security posture, including driving policy development, security awareness, identity & access management, and data governance initiatives.
Duties and Responsibilities
- Continuously exhibit and uphold Core Values of Integrity, Accountability, Communication and Teamwork, Innovation and Customer Service
- Develop, maintain, and refine risk management practices using established frameworks such as NIST CSF and ISO 27001
- Create and maintain information security policies, standards, procedures, and guidelines; prepare and review control narratives and descriptions, policy exceptions, risk registers, risk/control matrices and maintain performance metrics for security program performance
- Collaborate with the security team, IT, and bu