Security Analyst (Governance Risk & Compliance)- Remote
About HireRight:
HireRight is the premier global background screening and workforce solutions provider.
We bring clarity and confidence to vetting and hiring decisions through integrated, tailored solutions, driving a higher standard of accuracy in everything we do.
Combining in-house talent, personalized services, and proprietary technology, we ensure the best candidate experience possible.
PBSA accredited and based in Nashville, TN, we offer expertise from our regional centers across 200 countries and territories in The Americas, Europe, Asia, and the Middle East.
Our commitment to get it right every time, everywhere, makes us the trusted partner of businesses and organizations worldwide.
Overview:
Security Analyst (Governance Risk & Compliance) Katowice-Remote within Poland only Be part of a diverse, global technology team dedicated to helping the worlds greatest companies including your most loved brands hire their talent with confidence.
HireRight has been a successful business since 1981 and continues to grow.
At HireRight, our team members are innovating together to build the future of screening services and personal data.
Our company is exciting, dynamic and committed to empowering our team members growth.
Experiencing #LifeatHireRight means working with great people on inspiring ideas to help employers get it right every time, everywhere.
Are you ready? What you will do This role reports to the Senior Manager, Governance Risk & Compliance and will assist in the management of all aspects of corporate compliance and risk management, third-party vendor management, and operational monitoring to ensure that the organizations Information Security policies and procedures are implemented and well documented, and that compliance issues are identified, and remediation plans formalized in a timely fashion.
A strong candidate will possess the desire to learn all things security, risk, and compliance while working in a highly collaborative team
Responsibilities:
Assist with creating/revising Information Security policies, standards and processes that support business objectives.
Maintain the library of policies, standards, and processes to ensure consistency within the document set and accessibility to internal stakeholders.
Support the performance of periodic reviews to ensure that processes and standards reflect the current regulatory or internal obligations of the company.
Contribute to various projects to increase operational efficiency with the company, strengthen the security posture, and help meet the companys internal and external regulatory or compliance requirements.
Serve as information security representative with internal business units, clients, and partners, responding to security questionnaires and performing evidence creation and/or data collection to support requests.
Perform ad-hoc compliance tasks, participate in special projects, or perform additional duties as assigned.
Assist in design and implementation various related management frameworks and control sets, such as:
COSO, COBIT, ISO 27001/2, NIST CSF, PCI DSS etc.
Perform periodic assessments and monitor compliance with internal policies, standards and controls.
Determine audit readiness, such as SOC2 and other external audits, through pre-audit assessments with relevant staff.
Takes a contributing role in the development and execution of the internal compliance program.
This includes risk assessments, controls testing, and compliance reviews.
Document and track remediation of issues identified during third-party assurance reviews or internal assessments following an approved change control process.
Partner with all levels of management and partner with Internal and External auditors to assist in scheduling and resource planning for audits.
Work with a variety of cross-functional stakeholder teams (e.
g.
, Legal, Compliance, Privacy, Sales, etc.
) to achieve program objectives.
Support the evaluation, implementation, and improvement of risk mitigation initiatives or security controls.
Conduct risk assessments according to internal methodology and/or industry best practice, collecting evidence of control effectiveness and preparing senior management communications and reports.
Maintains and updates the library of policies, controls, and reporting templates.
Continually reviews and improves the risk and compliance assessment methodologies, processes, and procedures.
Qualifications:
Education Bachelors Degree in Information Technology, Computer Science, or equivalent previous work experience
Experience:
0-1 years of relevant work experience and/or a combination of relevant knowledge and experience from other industries.
A plus if:
Youre currently studying, attending, or furthering your security knowledge and pursuing entry-level certifications, e.
g.
Security+.
About you Fluent in English What do we offer:
HireRight offers its employees a competitive salary, permanent contract and a comprehensive package of benefits.
From day one you will receive a training plan to get you on board quickly.
Additionally, we offer:
Private Medical Care Edenred card Lunch Vouchers Paid Lunch Break (30 Minutes) Social Fund (Holiday Allowance, Glasses Voucher) Bonus Plans Group Life Insurance Career Path & Opportunities to Grow Professional Training Please submit resume/CV in English.
All resumes are held in confidence.
Only candidates whose profiles closely match requirements will be contacted during this search.
HireRight does not accept unsolicited resumes through or from search firms or staffing agencies.
All unsolicited resumes will be considered the property of HireRight and HireRight will not be obligated to pay a placement fee.
Recommended Skills Assessments Auditing Business Efficiency Business Planning Cash Or Share Options Communication Estimated Salary: $20 to $28 per hour based on qualifications.
HireRight is the premier global background screening and workforce solutions provider.
We bring clarity and confidence to vetting and hiring decisions through integrated, tailored solutions, driving a higher standard of accuracy in everything we do.
Combining in-house talent, personalized services, and proprietary technology, we ensure the best candidate experience possible.
PBSA accredited and based in Nashville, TN, we offer expertise from our regional centers across 200 countries and territories in The Americas, Europe, Asia, and the Middle East.
Our commitment to get it right every time, everywhere, makes us the trusted partner of businesses and organizations worldwide.
Overview:
Security Analyst (Governance Risk & Compliance) Katowice-Remote within Poland only Be part of a diverse, global technology team dedicated to helping the worlds greatest companies including your most loved brands hire their talent with confidence.
HireRight has been a successful business since 1981 and continues to grow.
At HireRight, our team members are innovating together to build the future of screening services and personal data.
Our company is exciting, dynamic and committed to empowering our team members growth.
Experiencing #LifeatHireRight means working with great people on inspiring ideas to help employers get it right every time, everywhere.
Are you ready? What you will do This role reports to the Senior Manager, Governance Risk & Compliance and will assist in the management of all aspects of corporate compliance and risk management, third-party vendor management, and operational monitoring to ensure that the organizations Information Security policies and procedures are implemented and well documented, and that compliance issues are identified, and remediation plans formalized in a timely fashion.
A strong candidate will possess the desire to learn all things security, risk, and compliance while working in a highly collaborative team
Responsibilities:
Assist with creating/revising Information Security policies, standards and processes that support business objectives.
Maintain the library of policies, standards, and processes to ensure consistency within the document set and accessibility to internal stakeholders.
Support the performance of periodic reviews to ensure that processes and standards reflect the current regulatory or internal obligations of the company.
Contribute to various projects to increase operational efficiency with the company, strengthen the security posture, and help meet the companys internal and external regulatory or compliance requirements.
Serve as information security representative with internal business units, clients, and partners, responding to security questionnaires and performing evidence creation and/or data collection to support requests.
Perform ad-hoc compliance tasks, participate in special projects, or perform additional duties as assigned.
Assist in design and implementation various related management frameworks and control sets, such as:
COSO, COBIT, ISO 27001/2, NIST CSF, PCI DSS etc.
Perform periodic assessments and monitor compliance with internal policies, standards and controls.
Determine audit readiness, such as SOC2 and other external audits, through pre-audit assessments with relevant staff.
Takes a contributing role in the development and execution of the internal compliance program.
This includes risk assessments, controls testing, and compliance reviews.
Document and track remediation of issues identified during third-party assurance reviews or internal assessments following an approved change control process.
Partner with all levels of management and partner with Internal and External auditors to assist in scheduling and resource planning for audits.
Work with a variety of cross-functional stakeholder teams (e.
g.
, Legal, Compliance, Privacy, Sales, etc.
) to achieve program objectives.
Support the evaluation, implementation, and improvement of risk mitigation initiatives or security controls.
Conduct risk assessments according to internal methodology and/or industry best practice, collecting evidence of control effectiveness and preparing senior management communications and reports.
Maintains and updates the library of policies, controls, and reporting templates.
Continually reviews and improves the risk and compliance assessment methodologies, processes, and procedures.
Qualifications:
Education Bachelors Degree in Information Technology, Computer Science, or equivalent previous work experience
Experience:
0-1 years of relevant work experience and/or a combination of relevant knowledge and experience from other industries.
A plus if:
Youre currently studying, attending, or furthering your security knowledge and pursuing entry-level certifications, e.
g.
Security+.
About you Fluent in English What do we offer:
HireRight offers its employees a competitive salary, permanent contract and a comprehensive package of benefits.
From day one you will receive a training plan to get you on board quickly.
Additionally, we offer:
Private Medical Care Edenred card Lunch Vouchers Paid Lunch Break (30 Minutes) Social Fund (Holiday Allowance, Glasses Voucher) Bonus Plans Group Life Insurance Career Path & Opportunities to Grow Professional Training Please submit resume/CV in English.
All resumes are held in confidence.
Only candidates whose profiles closely match requirements will be contacted during this search.
HireRight does not accept unsolicited resumes through or from search firms or staffing agencies.
All unsolicited resumes will be considered the property of HireRight and HireRight will not be obligated to pay a placement fee.
Recommended Skills Assessments Auditing Business Efficiency Business Planning Cash Or Share Options Communication Estimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
