Stratascale Integrated Risk Management & Compliance Analyst_
Boston
**Job Summary**
Stratascale is seeking a cybersecurity Integrated Risk Management (IRM) Analyst with experience evaluating business processes, identifying needs, and developing strategies to maximize cybersecurity improvements. The candidate would be responsible for working with clients to understand their various risk and compliance processes and to aid in the design, configuration, and testing of technologies to meet those needs.
This role will report to the Director of Security Programs - Strategy & Risk within the Stratascale department.
This position is remote with a Home Office setup as determined by Stratascale management.
**About Us**
As a digital and cybersecurity services company, Stratascale exists to help the Fortune 1000 transform the way they use technology to advance the business, generate revenue, and respond quickly to market demands. We call it Digital Agility.
To learn more about how we’re shaping the future of digital business and a more secure world, visit stratascale.com.
**Responsibilities**
_Include, but not limited to:_
+ Assess, document, and report on the compliance and risk posture of information assets for Stratascale and its customers
+ Support internal and external audit processes for relevant compliance
+ Work with various business units to ensure controls are adequate, appropriate, and effective
+ Collaborate on the definition of security standards and development organizational policies
+ Assist with vendor due-diligence processes and help define overall third-party risk management efforts
+ Support customer information security compliance programs, ensuring IT activities, processes, and procedures meet defined requirements, policies, and regulations
+ Develop strategies to address awareness and training for all stakeholders as well as technical solutions
+ Stay informed on current and emerging regulatory and compliance trends and initiatives
**Qualifications**
+ Minimum 1-4 years of professional experience
+ Bachelor’s degree or equivalent combination of education and experience
+ Team player with strong work ethic with attention to detail
+ Excellent written, verbal, and consultative skills (e.g., professionalism, collaboration, negotiation, conflict resolution, quick learner, etc.)
+ Good Interpersonal skills that demonstrate the ability to communicate with both technical and non-technical personnel in cross-functional teams to influence decision making
+ Strong process and data analysis skills with the ability to communicate systems concepts in a meaningful business context
+ Proficiency with Microsoft Office Suite (e.g., Word, Excel, PowerPoint, Visio)
+ Willingness to obtain Industry certifications (e.g., CTPRP, CISSP, CISM, CRISC, CIPP, CISA)
+ Experience with one or more of the following: TruOps, Prevalent, ServiceNow GRC, Microsoft Compliance Manager and Microsoft Purview, and/or other relevant GRC, Privacy, and/or Risk Management technologies
**Required Skills**
+ Experience with third-party risk management tools such as Prevalent, Process Unity, Service Now, and/or KY3P.
+ Must also have experience working within GRC and Privacy tools such as ZenGRC, TruOps, Archer, Onspring, Logicgate, OneTrust, and/or ServiceNow.
+ Experience with IT governance, risk, and compliance management in a complex global environment
+ Familiarity with security frameworks – in particular NIST RMF, NIST CSF, and ISO 27001/27002
+ Experience with legal and regulatory compliance standards such as NYDFS Cybersecurity Regulation, GDPR, HIPAA, and PCI
+ Strong understanding of fundamental information security concepts and technology
+ Ability to develop security standards and guidelines based on best practices and industry standards
+ Experience in a Business Analyst role with responsibility for facilitating meetings to define / compile business requirements and developing functional / technical documentation, in a client environment
+ Experience working on systems implementation projects with COTS / 3rd party software, including configuration and testing activities
+ Experience with Big 4 consulting firms, or other global system integrators a plus
**Unique Requirements**
+ Travel up to 10%
**Additional Information**
+ The estimated annual pay range for this position is $75,000 - $100,000 which includes a base salary and bonus. The compensation for this position is dependent on job-related knowledge, skills, experience, and market location and, therefore, will vary from individual to individual. Benefits may include, but are not limited to, medical, vision, dental, 401K, and flexible spending.
+ Equal Employment Opportunity – M/F/Disability/Protected Veteran Status
**Job Wrapping 1**
\#LI-Remote
Refer a friend to this job (cims.com/jobs/17332/stratascale-integrated-risk-management-%26-compliance-analyst/job?mode=apply&apply=yes&in\_iframe=1&hashed=-336032949)
**Need help finding the right job?**
We can recommend jobs specifically for you!
**Job Locations** _US-Remote | US-NC-Charlotte_
**Requisition ID** _2024-17332_
**Approved Min (Total Target Comp)** _USD $75,000.00/Yr._
**Approved Max (Total Target Comp)** _USD $100,000.00/Yr._
**Compensation Structure** _Base Plus Bonus_
**Category** _Administrative/Clerical_