Sr. Information Security Governance, Risk and Compliance Analyst (bcbst)
Job posting number: #84949 (Ref:R-39992)
This Job Posting is Expired.
Job Description
Supports the Information and Cyber Security Governance Risk and Compliance identification, documentation and management process across all areas of the enterprise.Job Description:
Job Responsibilities
- Collects, analyzes and documents Governance, Risk and Compliance (GRC) assessment data to create meaningful, actionable information decision making documentation for leadership. Includes well researched and applicable recommendations, findings, and observations on gaps and priorities.
- Significantly contributes to the accurate and thorough analysis of data to determine required and appropriate action for GRC outcomes. JOB IS FROM: postdocjobs.oneVIEW
- Lead teammates in partnership with stakeholders. Develops thoughtful, accurate, and comprehensive analysis documentation suitable for presentation to all levels of Management across the enterprise.
- Develop and improve documentation templates, and strategies based upon research and feedback from Management.
- Significantly contributes to the aggregation, documentation, and improvement of information and cyber security frameworks and measures and apply improvements to the GRC management process. Continues to monitor and update ongoing GRC tasks.
- Sets an example of leadership and fosters teamwork with coworkers.
Job Qualifications
Education
- Bachelor’s degree in a relevant field or an equivalent of four years of experience is required.
Experience
- 5 years - Information security experience in a mid-market business or larger, or IT architecture, administration, or implementation experience where information security was a component of the job responsibility.
- Of the required 5 years experience in Information Security a minimum of 2 years of experience in Governance, Risk or Compliance.
Skills/Certifications
- Must have one or more of the following certifications required: ISC2 CISSP, GIAC GSEC, COMPTIA SECURITY+, ISACA CRISC, ISACA CISA, ISACA CISM or comparable certification.
- Demonstrated analysis, problem resolution and troubleshooting skills are required.
- Ability to effectively assess processes, Compliance documents, risks and controls and identify emerging risks and issues.
- Ability to analyze large bodies of data and communicate results in a concise and comprehensive manner to multiple stakeholders across the organization.
- Knowledge of security and control frameworks, such as NIST, ISO, COBIT, ITIL, HITRUST and HIPAA requirements.
- Ability to articulate complex ideas to stakeholders within a high-profile technical infrastructure environment.
- Ability to develop, lead, and implement new initiatives appropriate to Information Security Governance, Risk, and Compliance.
- Ability to evaluate and test new techniques and technologies.
- Exceptional time management skills.
- Excellent oral and written communication skills.
- Strong interpersonal skills and ability to cultivate relationships with internal and external stakeholders, promoting diversity of people, perspectives and ideas.
- Ability to establish and maintain a high level of customer trust and confidence through extensive security knowledge and positive attitude.
- Ability to bridge communications on complex needs and requirements between technical and business-oriented audiences.
- Ability to construct a relevant and well-developed business case for influencing outcomes.
- Ability to work with all levels of staff and management.
Job Specific Requirements:
GRC experience highly preferred
Preferred Skills:
Number of Openings Available:
1Worker Type:
EmployeeWorker Sub-Type:
EmployeeCompany:
BCBST BlueCross BlueShield of Tennessee, Inc.Applying for this job indicates your acknowledgement and understanding of the following statements:
BCBST is an Equal Opportunity employer (EEO), and all employees and applicants will be entitled to equal employment opportunities when employment decisions are made. BCBST will take affirmative action to recruit, hire, train and promote individuals in all job classifications without regard to race, religion, color, age, sex, national origin, citizenship, pregnancy, veteran status, sexual orientation, physical or mental disability, gender identity, or any other characteristic protected by applicable law.
Further information regarding BCBST's EEO Policies/Notices may be found by reviewing the following page:
BlueCross BlueShield of Tennessee is not accepting unsolicited assistance from search firms for this employment opportunity. All resumes submitted by search firms to any employee at BlueCross BlueShield of Tennessee via-email, the Internet or any other method without a valid, written Direct Placement Agreement in place for this position from BlueCross BlueShield of Tennessee HR/Talent Acquisition will not be considered. No fee will be paid in the event the applicant is hired by BlueCross BlueShield of Tennessee as a result of the referral or through other means.
Tobacco-Free Hiring Statement
To further our mission of peace of mind through better health, effective 2017, BlueCross BlueShield of Tennessee and its subsidiaries no longer hire individuals who use tobacco or nicotine products (including but not limited to cigarettes, cigars, pipe tobacco, snuff, chewing tobacco, gum, patch, lozenges and electronic or smokeless cigarettes) in any form in Tennessee and where state law permits. A tobacco or nicotine free hiring practice is part of an effort to combat serious diseases, as well as to promote health and wellness for our employees and our community. All offers of employment will be contingent upon passing a background check which includes an illegal drug and tobacco/nicotine test. An individual whose post offer screening result is positive for illegal drugs or tobacco/nicotine and/or whose background check is verified to be unsatisfactory, will be disqualified from employment, the job offer will be withdrawn, and they may be disqualified from applying for employment for six (6) months from the date of the post offer screening results.
Resources to help individuals discontinue the use of tobacco/nicotine products include smokefree.gov or 1-800-QUIT-NOW.