Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive feedback and expert guidance on applications, and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

GRC Analyst Consultant

Remote: 
Full Remote
Contract: 
Freelance
Salary: 
67 - 96K yearly
Experience: 
Mid-level (2-5 years)
Work from: 
Poland

Offer summary

Qualifications:

3+ years of relevant experience, Deep knowledge of GRC frameworks, Experience in Info Security Audit, Excellent English skills (C1), Security certifications like CISSP preferred.

Key responsabilities:

  • Manage and implement info security standards
  • Handle service requests related to compliance
  • Review and update security policies
  • Conduct risk assessments and audits
  • Collaborate to improve internal audit processes
Winged IT logo
Winged IT Scaleup https://wingedit.pl/
51 - 200 Employees
About Winged IT
Winged IT is a Polish Tech Outsourcing, Recruitment, and Consulting Company that works with more than 100 clients from 4 continents. We deliver Tech Talents from Central and Eastern Europe, ready to work remotely from Poland or relocate to other countries. We also support international companies in establishing their OWN (in-house) Engineering teams or subsidiaries in Poland – for more details, please visit our dedicated https://doITinPoland.com/ website.
See more Winged IT offers

Job description

Logo Jobgether

Your missions

Our client: US-based cybersecurity company headquartered in New York City

Location: Remotely from Poland

Salary: 35-50 USD/h + VAT

Working time: 15:00 - 23:00

Cooperation model: B2B

Start date: ASAP

Recruitment process: 2-3 interviews (screening and two technical calls)

Our Client is a US-based cybersecurity company headquartered in New York City whose mission is to support its clients in mitigating cyber threats. They are focused on three main areas: Cyber Breach Response, Cloud Security Services, and Proactive Cyber Services. Their military-grade professionals have decades of experience in cyber operations and apply their knowledge of the attacker perspective to facilitate efficient, effective, and scalable responses to cyber breaches. Their growing team combines operational and technological disciplines with instinctual methods to keep their client’s information safe.

Your Role Is To

  • > Manage existing and implement new information security related standards and compliance across the organization such as SOC 2, HIPAA, EU-GDPR and DFS, NIST 800-171;
  • > Handle service requests such as SOC 2 report distribution, BAA, completing security questionnaires, query with regards to information security / compliance received;
  • > Design, review and update information security policies and procedures;
  • > Perform information security risk assessment and risk management;
  • > Evaluate the implemented controls to identify any gap and improve the effectiveness score;
  • > Conduct third party vendor risk assessment and apprise stakeholder of the risk / findings;
  • > Assist with information security assessment of new or merged teams to identify gap, ensure timely remediation and cover under company’s existing information security / compliance governance;
  • > Work within the team to identify, track, remove impediments to improve internal auditing process and support the automation of manual and redundant audit activities;
  • > Perform internal and participate in the external audit, coordinate with the auditor and internal team for timely collection of the evidence;

Your Skills And Experiences

  • > 3+ years of experience in a similar position, supporting GRC security initiatives with a global scope and interaction requirements;
  • > Deep knowledge working with frameworks such as ISO27001/27002, SSAE16, GDPR, NIST 800-171, NIST 800-53;
  • > Superior analytical and critical thinking skills, organizational skills, and meticulous attention to detail;
  • > Experience in implementing, managing and supporting an Information Security Management System;
  • > Experience in Information Security Audit;
  • > Demonstrated ability to work independently and as part of a team;
  • > Excellent English skills (C1).

Nice To Have

  • > Experience in the software or technology service industry;
  • > Experience in enterprise risk management;
  • > Security certification such as CISSP, CISM, CIPP, or CISA.

Our Client Offers

  • A possibility to join a team of security consultants investigating computer crimes and breaches that make the headlines – and many more that don’t;
  • Great opportunity for personal development in a stable and friendly multinational company;
  • Competitive salary;
  • Remote work together with participation in global projects;
  • A possibility of growing your craft alongside like-minded professionals.

If interested, please apply safely through this portal (application rules are in accordance with GDPR). Employment agency Nr 17138.

Required profile

Experience

Level of experience: Mid-level (2-5 years)
Spoken language(s):
Check out the description to know which languages are mandatory.

Hard Skills

Risk AnalysisGeneral Data Protection Regulation (GDPR)NIST 800-53LinguisticsISO 20022ISO/IEC 27001Enterprise Risk Management (ERM)Information Security AuditsNIST 800-37Information Security Management SystemsRisk ManagementInformation Technology & Computing Services

Soft Skills

  • Teamwork
  • Analytical Thinking
  • Detail Oriented
  • Critical Thinking
  • Problem Solving
  • Verbal Communication Skills
  • Organizational Skills
Are you interested?

Related jobs

See more jobs
Sign in or sign up with Google or LinkedIn