About the company
ilink digital is a global software solution provider and systems integrator, delivering next-generation technology solutions to help clients solve complex business challenges, improve organizational effectiveness, increase business productivity, realize sustainable enterprise value, and transform your business inside-out. ilink integrates software systems and develops custom applications, components, and frameworks on the latest platforms for it departments, commercial accounts, application services providers (asp), and independent software vendors (isv). Our solutions are used across various industries including healthcare, telecom, government, oil and gas, education, and life sciences. Our expertise encompasses cloud computing & application modernization, data management & analytics, enterprise mobility, portal, collaboration & social employee engagement, embedded systems, and user experience design.
what makes ilink's offerings unique is our use of pre-created frameworks, designed to accelerate software development and the implementation of business processes for our clients. We have over 60 frameworks (solution accelerators), both industry-specific and horizontal, that can be easily customized and enhanced to meet current business challenges.
requirements
security grc analyst
* strong understanding of information security principles and technologies, technical information, and security concepts.
* demonstrated analytical, problem-solving, and evaluative skills, with the ability to conduct research, identify issues, formulate options, and make conclusions.
* understanding of existing and emerging technologies.
* project management skills including planning, status reporting, issues resolution, and risk mitigation.
* ability to multi-task and handle multiple projects simultaneously.
* effective communication skills across all organizational levels, including senior and executive management.
* ability to produce high-quality documentation such as business requirements, design documents, test cases, and user guides.
* strong organizational, interpersonal, and presentation skills.
* excellent written and oral communication skills.
qualifications
* bachelor’s degree in information technology, computer information systems, risk management, computer science, cybersecurity, or equivalent.
* hands-on experience with soc2 or iso27001 audit controls and certification.
* knowledge of grc management systems like archer or audit board.
* understanding of security controls such as access control, auditing, authentication, encryption, data integrity, physical security, and application security.
* experience working with diverse teams.
* support security compliance and certification functions such as soc2.
* participate in internal security risk assessments.
* coordinate with third-party auditors for soc2 assessments and related activities.
* manage internal soc2 compliance activities.
* support security risk management, third-party risk management, security maturity assessments, cloud security governance, and reporting under the guidance of the security lead.
* program management of grc security processes on a monthly and quarterly basis.
* develop and update security metrics and collaborate with other security teams to obtain risk metrics.
* monitor security grc functions and develop executive reports.
* maintain and update the risk register.
* build strong relationships with support teams and management.
* manage status updates and reporting on activities and issues.
* enhance understanding of third-party security risks and controls.
* stay current on security trends, attack techniques, and mitigation strategies.
* draft and communicate requests for information to vendors regarding vulnerabilities.
* maintain vendor inventory with risk ratings and review dates.
benefits
* competitive salaries
* medical insurance
* employee referral bonuses
* performance bonuses
* flexible work options & fun culture
* learning & development programs
* in-house technology training
#j-18808-ljbffr