Bloomberg

Senior Information Security GRC Analyst

Bloomberg$100K — $130K *
US-AnywhereRemote in United States
Information Technology
8 - 10 years of experience
Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • 10+ years of experience in Information Security and Compliance
  • 2+ years of experience with security audits, either as an auditor or responding information system security officer
  • Strong working knowledge of NIST 800-53 (2 years of experience)
  • Experience managing POA&M or CAP processes
  • Experience using a GRC tool like Archer (3 years of experience)

Responsibilities

  • Support clients in developing their information security program with tactical implementation assistance
  • Develop and track client information security implementation plans
  • Interview administrators and managers to gather requirements for program artifacts
  • Perform high-level assessments of client information security efforts to ensure progress
  • Analyze processes and procedures to ensure compliance with client standards

Benefits

  • 100% remote work environment
  • Opportunity to work with state-wide information security programs
  • Engagement in high-level security assessments
  • Potential for local candidates to attend occasional onsite meetings and training sessions
Full Job Description
Role is 100% Remote.

Description:
The client is looking for a Senior Information Security GRC Analyst (Security Analyst - Consultant)

Scope of the project:
This position with be perform duties as part of DIS execution of its responsibilities under the statewide information security program.

Responsibilities include:
Supporting client during their development of the information security program with direct tactical implementation assistance.
Developing and tracking client information security implementation plans.
Interview administrators, managers and third parties to aid in development of program artifacts.
Ensuring high-level assessments of client ' infosec work to ensure progress is made.
Providing high-level analysis of process and procedures work to ensure compliance with client standards.

Daily Duties / Responsibilities:
Duties include, but are not limited to:
Interviewing business and technical owners to determine policies and procedures used for each client process.
Developing and tracking infosec implementation plan progress.
Documenting information gathered during both interviews and
Document reviews to assist with developing formal process and procedures.
Assessing client documentation to ensure adequate approaches are used to comply with controls.

Required skills (must include years of experience, in order of importance)
10+ Years of Experience in Information Security and Compliance.
2+ Years of Experience with security audits based on a standard control set as an auditor or responding information system security officer
Must Have a Strong Working Knowledge of NIST 800-53 (2 Years of Experience)
Prior Experience POA&M or CAP.
Strong Communication Experience.
Experience With Using A GRC Tool (Archer or Similar) (3 Years of Experience)

Preferred Skills (Rank in order of Importance):
Have completed an information security plan or system security plan notebook.
Simultaneously, manage multiple infosec work efforts.
Knowledge of IRS 1075, HIPAA, CJIS, MARS-E
and/or PCI-DSS.
Government sector experience

Additional Skills
Ability to identify, map and re- engineer business processes.
Strong schedule management and resource planning skills.
Ability to work at a high-volume and fast pace.
Strong collaborator and strong ability to meet deadlines.

Required Education:

Bachelor's Degree Preferred Certifications:

CISA, GSLC, or equivalent certification

Notes:

Role is 100% Remote. Preference will be given to local candidates who can come to the office as needed for client and departmental meetings, trainings, and other onsite activities.

About Bloomberg

Bloomberg L.P. is a privately held financial, software, data, and media company headquartered in Midtown Manhattan, New York City. It was founded by Michael Bloomberg in 1981, with the help of Thomas Secunda, Duncan MacMillan, Charles Zegar, and a 12% ownership investment by Merrill Lynch. Bloomberg L.P. provides financial software tools and enterprise applications such as analytics and equity trading platform, data services, and news to financial companies and organizations through the Bloomberg Terminal (via its Bloomberg Professional Service), its core revenue-generating product. Bloomberg L.P. also includes a wire service (Bloomberg News), a global television network (Bloomberg Television), digital websites, a radio station (WBBR), subscription-only newsletters, and three magazines: Bloomberg Businessweek, Bloomberg Markets, and Bloomberg Pursuits.
Learn more about Bloomberg
Size
20,000 employees
Industry
Media
Founded
1981
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Bloomberg

More Information Technology Jobs

Find similar Senior Information Security GRC Analyst jobs:

NationwideRemote