Cyber Grc Analyst

Cyber GRC Analyst  

Sigma's GIS (Global Information Security) team is looking for a Cyber GRC Analyst to join our Governance, Risk and Compliance (GRC) vertical. This role is ideal for someone who is interested in gaining experience to support the diverse governance, risk, and compliance security-related tasks and issues in the growing GRC team. Under the direction of the Security GRC Manager, candidates will be testing cyber security controls and operating effectiveness, supporting customer assurance tasks, and other ad-hoc tasks as necessary. Our ideal candidate is passionate about trends in GRC, security, and technology. You will be expected to engage in professional development to maintain continual growth in professional skills and knowledge essential to this position. If you're a creative thinker who thinks outside of the box, we'd love to hear from you! 

Responsibilities 

• Respond to client security questionnaires, RFP/RFI's, and audit requests. Coordinate responses by working with internal stakeholders across disciplines. Maintain a repository of knowledge to respond to future requests.
• Work professionally with customers on their GRC requests.
• Collaborate effectively with colleagues, stakeholders, and leaders across multiple organizations to achieve program objectives.
• Respond to and maintain the GRC service queue for tickets escalated to the team in coordination with the relevant stakeholders.
• Work with the GIS team to maintain Sigma Security GRC profile to share with the customer stakeholders.
• Assess vendors and third party risk - escalate high risk findings to senior team members.
• Participate and execute governance activities including metrics gathering and reporting, and the performance of recurring internal assessment activities.
• Constantly be on the lookout for ways to improve processes to provide more effective and efficient service to the organization.

Requirements 

• A bachelor's degree or relevant experience.
• At least 1-2  years of experience in conducting and/or managing vendor assessments, customer assurance, maturity assessments, or risk assessments or other similar GRC roles.
• Basic Understanding of any assessment frameworks like SIG,SOC2, ISO,NIST, COBIT, CIS etc.
• Basic familiarity with Cloud Security terminology and concepts.
• Strong Organizational, analytical thinking, written, and communication skills.
• Any experience with GRC tools is preferred.
• Experience with scripting languages is a plus but not required

Additional Job details

The base salary range for this position is $108k - $125k annually.

Compensation may vary outside of this range depending on a number of factors, including a candidate's qualifications, skills, competencies and experience. Base pay is one part of the Total Package that is provided to compensate and recognize employees for their work at Sigma Computing. This role is eligible for stock options, as well as a comprehensive benefits package.