Cybersecurity Governance And Compliance Senior Analyst

TL;DR

Cybersecurity Governance And Compliance Senior Analyst: Leading the design and implementation of a policy- and standards-driven cybersecurity governance program, establishing and maturing a data governance and protection program across the full data lifecycle with an accent on defining and enforcing data classification, labeling, and handling requirements. Focus on identifying, escalating, and resolving cybersecurity GRC risks and issues, and supporting and maintaining cybersecurity compliance certifications and initiatives.

Location: Home-based in the US (Georgia, New Hampshire, New Jersey, Vermont, Virginia)

Salary: $78,800–$131,300 USD (US National Base Pay Range)

Company

hirify.global is a renowned global information analytics company that primarily focuses on providing scientific, technical, and medical (STM) research content, tools, and services.

What you will do

• Lead the design and implementation of a policy- and standards-driven cybersecurity governance program.
• Establish and mature a data governance and protection program across the full data lifecycle.
• Define and enforce data classification, labeling, and handling requirements, including controls to prevent inappropriate data sharing.
• Establish and maintain enterprise security governance structures, roles, and accountability.
• Serve as a trusted advisor to business and technology stakeholders on governance, risk, and compliance matters.
• Drive identification, escalation, and resolution of cybersecurity GRC risks and issues.

Requirements

• Possess extensive experience in cybersecurity governance, risk, and compliance programs.
• Proven experience developing and managing security policies, standards, and controls.
• Experience building or maturing enterprise data governance and data protection programs.
• Working knowledge of security and compliance frameworks such as ISO 27001/27701, ISO 27017/27018, ISO 42001, HIPAA, PCI DSS, NIST 800-53/800-171, FedRAMP, and/or TX-RAMP.
• Experience implementing and operating GRC platforms and security programs.
• Possess project management, analytical, and problem-solving skills.

Culture & Benefits

• The Information Security and Data Protection (ISDP) team leads the Company’s cybersecurity practice, safeguarding information assets, consumer data, and technology infrastructure.
• You will partner with business and technology stakeholders to enable effective risk management and support business objectives.
• Committed to providing a fair and accessible hiring process, with accommodation or adjustment support available.
• Offer country-specific benefits to support your well-being and happiness.
• We are an equal opportunity employer.