Governance, Risk and Compliance (GRC)Analyst

Position Description

Key Responsibilities

• Supports organizational compliance strategies by contributing information, analysis, and recommendations to strategic thinking and direction, establishing functional objectives in line with organizational objectives.
• Design and monitor cybersecurity controls to ensure compliance with framework requirements and internal policies.
• Collaborate with process owners to align business operations with security and privacy compliance frameworks
• Establishing strategies to align global and regional regulations.
• Regularly assess the efficacy of controls, recommend remediation steps and drive continuous improvement.

Key Responsibilities:

• Perform audits on internal processes and systems, benchmarking them against multiple standards such as ISO 27001, SOC 2, SOX, TiSAX etc. and internal policies.
• Develop and document processes that reduce potential for introduction of security risks, provide opportunities to automate, and benefit from multiple cycles of improvement.
• Respond to qualifying compliance incidents and invoke appropriate resources to deal with the incidents.
• Support external audits and evaluations by external assessors.
• Conduct risk assessments and vulnerability assessments and provide effective recommendations.
• Help maintain and improve the ISMS through periodic sustaining activities

Basic Qualifications

• Degree or Equivalent Relevant Experience in Cybersecurity Governance Risk and Compliance.
• 2-3 years of experience in control and assurance related role
• Good understanding of Software-as-a-Service (SaaS) business model and operations
• CISA, CISSP, ISO 27001 Lead Auditor or Implementer certification
• Understanding of different security frameworks and standards such as NIST 800 series, SOC 2, ISO 27001, and TiSAX.
• Great ability to explain technical concepts to business users

Benefits:

• The ability to collaborate with, learn from colleagues in a highly complex, global organisation.
• We provide a working environment with a creative company, paired with a great compensation package, great benefits, and a supportive atmosphere where you can sharpen with new challenges and development opportunities.
• Hybrid work-from-home and at a determined Rockwell Automation facility.
• Corporate Social Responsibility opportunities,
• Support from our 24/7 employee assistance program.
• Reporting will to Technical Lead.