Job Title : Data Risk Analyst
Location : Remote
Duration : 12 Months
Job Description:
The Enterprise Data Governance (EDG) team partners with the business, privacy, legal, and data protection teams to manage Data Risk and create a robust security controls environment.
The immediate priority for EDG is to establish a scalable process and solution for data discovery and classification, access requests and provisioning, as well as access monitoring.
This position is responsible for supporting and executing the current capabilities and activities involved in the access control lifecycle, record retention and destruction, data discovery, and classification. The aim is to assist with process controls and participate in the design enhancement and testing of the solution that integrates the Data Governance platform with the above capabilities.
The ideal candidate will have a well-rounded background in Data Governance, Risk, or Compliance, preferably in information security/cybersecurity, with an understanding of Information Security Frameworks such as NIST CSF.
Identify opportunities to automate the delivery of smarter and easier Identity Access Management services that support the “access as an enabler” strategy.
Collaborate closely with the data protection, compliance, and internal audit teams to control the environment and coordinate fulfilling evidence/documentation requests.
Identify gaps and enhancements in Identity Access Management processes and systems globally across markets and segments. Provide recommendations and track completions as directed.
Serve as a resource to EDG-supported domain councils for data protection practices and governance control questions.
Collaborate with peers in the Identity Access Management team to ensure governance processes are in place that allow business access with minimal privileges.
Partner with Records Information Management (RIM) to assist EDG with records management processes and workflows.
Assist the EDG team in capturing record retention schedules and data management solutions that enable record retention and destruction.
Bachelor’s degree, preferably in Computer Science, Information Technology, Information Security, or equivalent experience.
At least 5 – 7 years of work experience in large, complex programs and projects, with a minimum of 5 years in a technology environment.
3 – 5 years’ experience with data governance, data discovery, data access governance, information governance, or records management
A minimum of 3 years' experience in applying relevant frameworks and principles for information governance, data governance, and records management.
Experience in Governance Risk Compliance (GRC), including knowledge of information security architecture, technologies, and management, information technology/cybersecurity governance, standards, procedures, and policies.
Cybersecurity certifications desired, such as ISACA CISSP, CISA, etc
Experience in the use of governance, risk, and compliance (GRC) software such as OneTrust, RSA Security Archer, or ServiceNow Integrated Risk Management
Prefer experience from risk management consulting practice where expert-driven consulting services were performed.
Strong knowledge of Data Discovery solutions and Data Classification technologies required to implement data discovery and classification policies, standards and guidelines.
Experience and knowledge in identifying rulesets and classifiers required to govern structured data with information types like PII and PCI.
Should be able to create a regex to identify custom data types.
Having a working knowledge of software systems, including enterprise systems, databases, infrastructure, networks, and other written and verbal communication skills within different domains is essential.
Analyzing requirements, workflows, and ability to quickly assimilate knowledge of processes, frameworks, and technologies.
Strong interpersonal, written, and verbal communication skills in English with the ability to communicate clearly and concisely across organizational levels and build effective working relationships.
Job Type: Full-time
Pay: $65.00 - $75.00 per hour
Benefits:
- 401(k)
- Dental insurance
- Health insurance
- Paid time off
- Vision insurance
Experience:
- data governance: 3 years (Preferred)
- GRC: 5 years (Preferred)
- Risk Analyst: 3 years (Preferred)
Work Location: Remote