Job Description :
Job Title: Information Security GRC Senior Analyst


Location: Southfield, MI


Duration: 6+ Months Contract


Job Description:


Skills/Requirements:


Highly motivated to work in information security.


Willingness to increase knowledge and credibility through obtaining training and/or certifications

(CISSP, CISA, CRISC, etc.


Ability to work well as an individual and as part of a team, including with other information technology

and security staff, as well as senior client facing staff.


Excellent written and oral communication skills, inter-personal skills, and effective skills to support

security programs. Must be able to provide formal reports and presentations as required.


Must give attention to detail and possess the ability to prioritize tasks so work is completed in an

accurate, timely manner.


Excellent problem-solving ability and ability to resolve issues under tight time frames.


Experience using Microsoft Office Suite (Word, Excel, PowerPoint, SharePoint etc preferred.


Must have the ability to work full time.


Must be able to work in an office environment.


Must be physically able to sit/stand at a computer & work in front of a computer screen for significant portions of the work day.


Responsibilities:


Work with the Chief Information Security Officer, Chief Technology Officer, and members of the Legal

Organization to identify high risk engagements that would come under this risk assurance process.


The emphasis will be on cyber security, information security, and data privacy risks associated with

critical client engagements based on client importance and potential penalties associated with any

issues.


Expected to stay current on security industry trends, new threats, attack techniques, mitigation

techniques, and emerging security technologies


Keep abreast of the latest information security standards, privacy laws, and regulations to including

(but not limited to) the NIST cybersecurity standards, IS27001, SOC2, and GDPR.


Participate, as needed, in critical incidents and implementation reviews.


Define and provide regular reporting on overall and individual engagement risks and the status of risk

mitigation efforts.


Qualifications:


Experience, Certifications, & Education


At least 3-5 years of professional work experience


Experience within Information Security, Risk, Compliance, Audit or Information Technology is highly

desired


Bachelor?s degree in a related field required


Certifications in Information Systems Security or Internal Audit desired, but not required