Senior Cyber Risk Analyst, Compliance
Ultimate Kronos Group
- Lowell, MA
- Permanent
- Full-time
- Support the execution and completion of external certification audits for multiple products such as SOC1, SOC2, and ISO27001/17/18
- Attend internal control walkthroughs to aid where necessary and identify areas for improvement
- Manage relationships with external audit firms to help ensure efficient audit engagements
- Provide guidance to stakeholders on design of internal controls
- Work with the business to ensure risks are mitigated and make recommendations for process improvement
- Guide adoption and enhancement of GRC tool for compliance, monitoring, and risk management activities
- Stay abreast of audit and risk best practices and trends to provide guidance to the team and the business
- Communicate results via clear, concise written reports and oral presentations
- Perform additional duties and projects as assigned by management
- Bachelor's or master's degree in Management Information Systems, Computer Science, Information Technology, Accounting, Business Administration, or related field
- 5 - 7 years of work experience in audit and risk management, with an emphasis on information systems, finance, and process controls
- Significant experience with information security frameworks including SOC1, SOC2 or ISO27001/17/18
- Familiarity with Governance, Risk and Compliance (GRC) tools
- Organized, detail-oriented team player with analytical skills and the ability to prioritize daily work and support multiple initiatives simultaneously
- Strong business acumen to include strong verbal and written communication skills
- CISA, CISM, CRISC, CISSP, or similar security certification preferred