Do you love a career where you Experience Grow & Contribute at the same time while earning at least 10% above the market If so we are excited to have bumped onto you.
If you are a Cyber Control Findings Analyst and looking for excitement challenge and stability in your work then you would be glad to come across this page.
We are an IT Solutions Integrator/Consulting Firm helping our clients hire the right professional for an exciting long term project. Here are a few details.
Check if you are up for maximizing your earning/growth potential leveraging our Disruptive Talent Solution.
Role: Cyber Control Findings Analyst
Location: New York NY
Hybrid Mode Position
Exp: 5 Yrs
Position Overview:
The Cyber Control Findings Analyst is tasked with evaluating tracking and addressing security issues within an organization. Below are the primary duties and required qualifications for this position:
Key Responsibilities:
- Risk and Vulnerability Analysis: Perform assessments validation tests compliance reviews and audits in line with NIST standards.
- Audit Management: Oversee and support SOC 2 and global ISO 27001 audits.
- ISO 27001 Implementation: Promote the adoption of ISO 27001 standards across the organization.
- Audit Documentation: Manage and maintain a centralized repository for audit evidence.
- Stakeholder Communication: Communicate critical issues and risks to relevant stakeholders.
- Departmental Collaboration: Collaborate with corporate IT procurement and privacy departments to align with GRC (Governance Risk and Compliance) goals.
- Industry Knowledge: Stay current with industry standards and practices.
Requirements
- Bachelor s degree in cybersecurity risk management governance or a related discipline.
- Over 5 years of direct experience in information security particularly in risk and compliance.
- Expertise in conducting ISO 27001 and SOC 2 audits and managing audit responses.
- Knowledge of relevant regulatory compliance standards (ISO 27001 SOC 2 NIST FedRamp CMMC PCI GDPR etc.).
- Familiarity with identity management protocols cloud storage solutions and disaster recovery.
- Proficiency in GRC tools and best practices (e.g. ZenGRC OneTrust Archer).
- Strong attention to detail and excellent communication skills.
Preferred Qualifications:
- Certifications such as ISO 27001 Lead Auditor CISA CISM or CISSP.
Benefits
Bachelor s degree in information cybersecurity, risk management, governance, or a related field. 5+ years of direct experience in information security, with a focus on risk and compliance. Expertise in conducting ISO 27001 and SOC 2 audits and handling audit responses. Knowledge of relevant regulatory compliance requirements (ISO 27001, SOC 2, NIST, FedRamp, CMMC, PCI, GDPR, etc.). Familiarity with identity management standards, cloud storage, and disaster recovery. Proficiency in GRC tools and best practices (e.g., ZenGRC, OneTrust, Archer). Strong attention to detail and effective communication skills. Preferred Qualifications: ISO 27001 Lead Auditor, CISA, CISM, or CISSP certification