Job
Description
As a Risk & Compliance Analyst, your role involves supporting the implementation and management of IT risk, compliance, and governance processes across the organization's technology landscape. Your responsibilities include: - Assisting in identifying, assessing, and documenting IT risks. - Maintaining and updating the IT Risk Register; tracking remediation activities. - Supporting compliance efforts with ISO 27001, GDPR, SOX, and ITGC standards. - Coordinating evidence collection and documentation for internal and external audits. - Helping develop and maintain IT governance and compliance policies. - Participating in control testing, access reviews, and compliance checks. - Supporting vendor risk assessments and maintaining compliance records. - Preparing compliance and risk reports for management review. To excel in this role, you should have a good understanding of IT Risk Management, Compliance, and Governance concepts. You should also be familiar with ISO 27001, NIST, ITIL, SOX, GDPR, and ITGC frameworks. Experience supporting audits, control testing, or risk assessments is valuable, as well as knowledge of GRC/ITSM tools (ServiceNow, Archer) and MS Excel or Power BI. Strong communication, analytical, and documentation skills are essential. Qualifications: - Bachelor's Degree in IT, Risk Management, or a related field. - 3-6 years of experience in IT Governance, Risk, or Compliance. - Preferred certifications: ISO 27001 Lead Auditor/Implementer, ITIL v4, or CISA. It is worth noting that the company values skills such as IT Risk Management, compliance framework, audit readiness, and BCP. As a Risk & Compliance Analyst, your role involves supporting the implementation and management of IT risk, compliance, and governance processes across the organization's technology landscape. Your responsibilities include: - Assisting in identifying, assessing, and documenting IT risks. - Maintaining and updating the IT Risk Register; tracking remediation activities. - Supporting compliance efforts with ISO 27001, GDPR, SOX, and ITGC standards. - Coordinating evidence collection and documentation for internal and external audits. - Helping develop and maintain IT governance and compliance policies. - Participating in control testing, access reviews, and compliance checks. - Supporting vendor risk assessments and maintaining compliance records. - Preparing compliance and risk reports for management review. To excel in this role, you should have a good understanding of IT Risk Management, Compliance, and Governance concepts. You should also be familiar with ISO 27001, NIST, ITIL, SOX, GDPR, and ITGC frameworks. Experience supporting audits, control testing, or risk assessments is valuable, as well as knowledge of GRC/ITSM tools (ServiceNow, Archer) and MS Excel or Power BI. Strong communication, analytical, and documentation skills are essential. Qualifications: - Bachelor's Degree in IT, Risk Management, or a related field. - 3-6 years of experience in IT Governance, Risk, or Compliance. - Preferred certifications: ISO 27001 Lead Auditor/Implementer, ITIL v4, or CISA. It is worth noting that the company values skills such as IT Risk Management, compliance framework, audit readiness, and BCP.
