Free cookie consent management tool by TermsFeed GRC Security Analyst | Antal Tech Jobs
Image
Post a Job
Back to Jobs
3 Days ago

GRC Security Analyst

Apply Now
decor
Delhi, Delhi, India
Information Technology
Full-Time
Greenway Health

Overview

The GRC Security Analyst will plan and implement policies, procedures, standards, and controls to govern the protection of corporate information systems, networks, and data. The GRC security analysts will stay up-to-date on the latest cybersecurity intelligence, including hackers' methodologies, in order to modify standards and controls that govern cybersecurity across the corporation.

Essential Duties & Responsibilities

  • Performing control assessments against corporate cybersecurity frameworks
  • Perform review of policies and supporting procedures/processes
  • Perform assessments of adherence to standards
  • Customer Security Questionnaire assistance
  • Work closely with management on security practices
  • Assess 3rd party vendors for adherence to standards
  • Develop routine reports in accordance with GRC metrics
  • Stay on top of changes in the industry as it relates to security.
  • Other security-related projects that may be assigned according to skills
  • Ensure compliance with policies and procedures
  • Develop and test Disaster Recover Plans
  • Help align company with HITRUST CSF

Experience

Education

  • Bachelor’s Degree, ideally in Computer Engineering, Computer Science, or Information Systems Management or equivalent work experience in the field of Cybersecurity
  • 3+ years of relevant work experience in: compliance/systems engineering/cybersecurity role
  • Experience in a healthcare setting preferred
  • Possess current security certifications (e.g., Security+, CISSP, CEH, SANS) or be willing to obtain within 1 year of assignment.

Skills/Knowledge

  • 3 – 5 years experience in building an Information Security Risk Management program
  • Experience supporting the development of Disaster Recovery Plans (DRPs).
  • Proven ability to coordinate, execute, and document Disaster Recovery Plan tests, including analysis and reporting of results.
  • Understanding and familiarity with information system standards
  • Understanding and familiarity with cybersecurity frameworks (ISO, NIST, HiTrust, COBIT, etc…)
  • Assist in maturing the Information Security Risk Management Program by helping to define an IS risk register which includes identifying threats and risks to the organization
  • Meet with business stakeholders to identify top security risks
  • Assist in performing IS self-assessments to ensure systems and applications are complying with corporate policies, applicable regulatory and legal requirements, and leading industry practices
  • Assist in developing and driving the implementation of security best practices and standards to mature the overall IS Risk Management Program which includes defining security system and application standards of control
  • Provide solutions to identified issues and risks
  • Work with the CISO to determine the acceptable level of risk for enterprise computing platforms.
  • Coordinate with key functional teams such as HR, IT, Marketing, Finance, Product Management, Development, General Counsel, and the Business to identify new applications and service providers in use and the associated security controls to secure the data.
  • Assist in performing Third Party Risk Assessments for new and existing vendor tools, on premise implementations, and third parties with access to the environment.
  • Assist in maturing the Third Party Risk Management program by defining security controls based on tiers of vendors.
  • Articulating identified risks to the business for remediation, mitigation and sign off.
  • Investigates incidents and events that include potential HIPAA and other data breaches, data leakage, brand reputational risks, malware propagation, system compromises etc.
  • Mature the Data Loss Prevention Program by defining DLP rulesets in existing tools such as Varonis, CASB, Next Generation Firewalls etc. and review outputs to determine the appropriate action required.
  • Assist with maturing the Data Governance Program which includes defining a Data Classification and Handling Program, identifying Data Owners, and assisting with the design and implementation of a Data Classification and Rights Management tool.
  • Assist in developing and maintaining Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for the Data Governance Security Program and initiatives.
  • Assist in the management and maintenance of the enterprise wide IS Security Awareness Program which includes phishing simulations, computer based training, proactive communications on latest threats, workshops and newsletters.
  • Assist in developing enterprise and functional team specific presentations to promote a security mindset
  • Work with the CISO to ensure the Information Security team stays abreast of new regulatory, legal and/or compliance data security requirements.
  • Ensure compliance with HIPAA, HITRUST, and applicable legal and regulatory requirements.
  • Strong documentation and communications skills

Work Environment/Physical Demands

  • While at work, this position is primarily a sedentary job and requires that the associate can work in an environment where they will consistently be seated for the majority of the work day
  • This role requires that one can sit and regularly type on a key board the majority of their work day
  • This position requires the ability to observe a computer screen for long periods of time to observe their own and others’ work, as well as in-coming and out-going communications via the computer and/ or mobile devices.
  • The role necessitates the ability to listen and speak clearly to customers and other associates.
  • The work environment is an open room with other associates and noise from others will be part of the regular work day.
Share job
Similar Jobs
View All
1 Day ago
Chief Technology Officer (CTO)
Information Technology
  • 9 - 15 Yrs
  • Mumbai (All Areas)
Role & responsibilities * Develop and execute the company's technology roadmap aligned with business goals. * Lead and mentor the engineering and IT teams to ensure high performance. * Identity and implement emerging technologies to enhance ...
More info
decor
2 Days ago
Website Developer
Information Technology
  • 700000 - 1200000 INR - Annual
  • 5 - 10 Yrs
  • Udaipur
Job Title: Website Developer Location: Udaipur, Rajasthan (HO) Job Type: Full-time Experience Level: Senior (5 TO 10 Years) About the Role: We are looking for a skilled and detail-oriented Website Developer to join our team. The ideal candidat...
More info
decor
2 Days ago
Business Analyst
Information Technology
  • Delhi, Delhi, India
Job DescriptionBusiness Analyst, Sales Operations:As Gartner Conferences continues its rapid expansion, we are seeking a highly motivated and analytical Sales Operations Analyst to join our dynamic team. This pivotal role supports the operational ne...
More info
decor
2 Days ago
ChicMic Studios - Python/Django Developer
Information Technology
  • Delhi, Delhi, India
Profile : Python developer.Experience : 2-6 Years.Location : Mohali, Punjab (WFO).ChicMic Studios is on the lookout for a skilled Python Developer who loves turning complex problems into elegant solutions.If you have a passion for Django, Flask, AWS...
More info
decor
2 Days ago
Sr Data Engineer
Information Technology
  • Delhi, Delhi, India
Job DescriptionAbout HighspotHighspot is a software product development company and a recognized global leader in the sales enablement category, leveraging cutting-edge AI and GenAI technologies at the core of its robust Software-as-a-Service (SaaS)...
More info
decor
2 Days ago
ChicMic Studios - Angular Developer - TypeScript/Javascript
Information Technology
  • Delhi, Delhi, India
Key Responsibilities Develop and maintain responsive, high-performance web applications using Angular. Collaborate with UX/UI designers and back-end developers to implement user-friendly features. Optimize application for maximum speed and scalab...
More info
decor
2 Days ago
Oracle PL-SQL Developer
Information Technology
  • Delhi, Delhi, India
Role SummaryWe are seeking a skilled Oracle PL/SQL Developer to design, develop, optimize, and maintain PL/SQL code for a regulatory database application which integrates with middleware and external APIs of MHA and DOT. The ideal candidate will hav...
More info
decor
2 Days ago
Software Engineer Senior
Information Technology
  • Delhi, Delhi, India
The CompanyGentrack provides leading utilities across the world with innovative cleantech solutions. The global pace of change is accelerating, and utilities need to rebuild for a more sustainable future. Working with some of the world’s biggest ene...
More info
decor

Talk to us

Feel free to call, email, or hit us up on our social media accounts.
CONTACT US
Email info@antaltechjobs.in
Social media