IT Information Security Risk & Compliance Analyst

East Petersburg, PA | Direct Hire

Post Date: 08/15/2017 Job ID: 9592 Industry: Technology
  • Position: IT Information Security Risk & Compliance Analyst
  • Location: Lancaster, PA
  • Status: Direct Hire
  • Salary Range: $70, 000-$90, 000
  • Remote Option: None

Job Description:
  • Provide support as may be required to the Information Security Risk Management and Compliance Team.
  • Assess and analyze the level of compliance with all state and local government information security regulatory requirements, and provide updates and status reports relevant to any incidents, ongoing activities, and issues. 
  • Inventory, classify, and assess the level of compliance with controls are in place for the information assets of the corporation. 
  •   Support, update, enhance when possible, and maintain information security policies and procedures.  
  • Monitor and assess compliance with approved policies, processes, procedures, and practices are effective around system user access and permissions, and provide updates and status reports relevant to any incidents, ongoing activities, and issues.
  • Support the development and delivery of information security education and ongoing awareness initiatives.
  • Provide support as may be required to the Information Security Risk Management and Compliance Team.Assist Information Security Risk and Compliance Management in promoting and executing the sustaining information security program and strategy as may be required. Support and enhance methodology, tools, and techniques employed. Liaise with and manage schedules with Business Units, collect and review data, support analysis, and report generation. Track remediation projects and tasks, and support residual risk assessments. Provide updates and status reports relevant to ongoing activities and issues. Support Business Unit SOC and ISQ reviews. Assist as may be required with assessment of and remediation of Information Security relevant policy violations, breach of data, compliance issues, or incidents.
  • Assess and analyze the level of compliance with all state and local government information security regulatory requirements, and provide updates and status reports relevant to any incidents, ongoing activities, and issues.  Assess and analyze the level of compliance with all internal policies, procedures, defined standards, and best practices, and provide updates and status reports relevant to any incidents, ongoing activities, and issues.
  • Inventory, classify, and assess the level of compliance with controls are in place for the information assets of the corporation.  Support, enhance when possible, and maintain sets of standard controls for each class of data, track and provide updates and status reports relevant to any incidents, ongoing activities, and issues. Support relevant Data Loss Prevention and data classification project efforts as may be required.
  • Support, update, enhance when possible, and maintain information security policies and procedures.  Work collaboratively with Business Units to improve understanding of and compliance with Information Security Policies and procedures.
  • Monitor and assess compliance with approved policies, processes, procedures, and practices are effective around system user access and permissions, and provide updates and status reports relevant to any incidents, ongoing activities, and issues.
  • Support the development and delivery of information security education and ongoing awareness initiatives.  As may be required, function as a liaison between various corporate business units and Information Security in order to develop and maintain awareness and facilitate improved understanding of information security policy concerns and risks. Provide timely and accurate reporting to Risk and Compliance Management, and others as may be required, regarding the effectiveness of the information security risk and compliance status and results, compliance trends, incidents, activities, and issues. Consolidate data, facilitate and contribute to building consensus, support reviews, and support incident analysis and items designated as of interest.

Tiffany McGarry

Fun Facts: Beach & Family lover, Netflix marathons binge watcher.

If you feel like you are the right fit for the job above, please click the apply online button below and I will be sure to reach out ASAP!

Not ready to apply?

Send an email reminder to:

Share This Job:

Related Jobs: