Job Description
Top Skills' Details
1.) 3-5 years of experience in information security, risk, or compliance
2.) Knowledge of NIST CSF, NIST 800-53, HIPAA, and HITRUST
3.) Experience supporting Governance, Risk, and Compliance activities
Description
Position Overview
The Information Security Analyst II (GRC) provides support for Governance, Risk, and Compliance activities aligned to NIST CSF, NIST SP 800-53, HIPAA Security Rule, and HITRUST CSF, PCI-DSS. The role supports risk assessments, audit readiness, control validation, and policy governance.
Essential Duties and Responsibilities
• Support compliance initiatives aligned to NIST, HIPAA, and HITRUST, PCI-DSS frameworks
• Assist in maintaining control mappings and compliance documentation
• Perform control testing and support evidence collection for audits
• Support HITRUST certification readiness activities
• Support enterprise cyber-risk management activities
• Execute and oversee the third-party risk manage...
1.) 3-5 years of experience in information security, risk, or compliance
2.) Knowledge of NIST CSF, NIST 800-53, HIPAA, and HITRUST
3.) Experience supporting Governance, Risk, and Compliance activities
Description
Position Overview
The Information Security Analyst II (GRC) provides support for Governance, Risk, and Compliance activities aligned to NIST CSF, NIST SP 800-53, HIPAA Security Rule, and HITRUST CSF, PCI-DSS. The role supports risk assessments, audit readiness, control validation, and policy governance.
Essential Duties and Responsibilities
• Support compliance initiatives aligned to NIST, HIPAA, and HITRUST, PCI-DSS frameworks
• Assist in maintaining control mappings and compliance documentation
• Perform control testing and support evidence collection for audits
• Support HITRUST certification readiness activities
• Support enterprise cyber-risk management activities
• Execute and oversee the third-party risk manage...