Back

Associate Cyber Analyst

GAF

Location Pin Icon
Parsippany, NJ
LOCATION

Job Description

As posted by the hiring company

Job Overview:

Come Build Your Career Under OUR Roof

Job Description:

Job Description

What Part Will You Play?

Global Cyber Security is seeking a Governance, Risk & Contols (GRC) Analyst to join the Global Cybersecurity team. This exciting role will report to the Director of Governance, Risk, and Controls and will be working on a variety of projects that support the team’s efforts in security posture improvement and risk reduction. For this role, a good candidate will have foundational knowledge in cybersecurity with experience in cybersecurity governance, risk and control assessment, and general knowledge of cyber security practices.

What Will You Be Doing?

  • Supporting the team’s global third-party risk management process including conducting vendor risk assessments and reporting of risks.
  • Further refine control and audit mechanisms to monitor and maintain compliance with policies and standards.
  • Work with various stakeholders to identify information and system asset owners as part of a control framework implementation.

What Do We Require From You?

  • Strong written and verbal communication skills with the ability to collaborate through all parts of the business.
  • The ability to interact comfortably with personnel across multiple organizations, build strong relationships at all levels and across all business units, and understand business imperatives.
  • Prioritization and balancing operational tasks with longer-term strategic security projects and efforts.
  • Knowledge and understanding of information risk concepts aligned with the CIS Top 20, and NIST Cyber Security Framework (CSF) and principles as a means of relating business needs to cybersecurity controls.
  • Excellent analytical skills and ability to analyze security requirements and relate them to appropriate security controls.
  • Experience drafting, revising, and maintaining policies, procedures, standards, and guidelines
  • Previous experience in conducting third-party vendor risk assessments.

Responsibilities:

  • The Cyber Security GRC Analyst’s job is composed of a variety of activities, centered primarily around performing control assessments, reviewing vendors, and drafting cyber security policies and awareness activities.
  • Develop, maintain and support security communication, awareness, and training for audiences throughout the organization.
  • Work as a liaison with vendors and the legal and purchasing departments to establish mutually acceptable contract language aligned with the cybersecurity protection addendum.

LEVEL BASED COMPETENCIES:

  • Mid-level CyberSecurity role with 2-4 years experience in control assessment, third party risk, and general cybersecurity concepts.
  • Good verbal, written, and interpersonal communication skills
  • Any industry recognized Information Security accreditation including CISSP, CISM, CRISC is desirable
  • Knowledge of third-party risk tools including OneTrust and BitSight.
  • Knowledge of Security and Compliance Testing IT Infrastructure, and exposure to any IT GRC tool such as Service Now will be a plus.

Dimensions

No of direct reports: 0

No of indirect reports: n/a

Budget Responsibility: no

Travel Requirements: less than 10%

GAF is an equal opportunity employer

We are taking a responsible approach to creating environments that allow us to do what we do best – Protect what matters most.

As part of our commitment to health and safety, COVID-19 vaccines are required for all candidates and employees in this position. Proof of vaccination is required. Should you require accommodation for medical or religious needs, GAF will engage in an interactive process with you to determine if a reasonable accommodation can be provided in accordance with applicable state and federal law.

We believe our employees are our greatest resource. We offer competitive salary, benefits, 401k, and vacation packages for all full time permanent positions. We are proud to be an equal opportunity workplace and GAF, Standard Logistics, SGI, and Siplast are proud to be affirmative action employers. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. If you have a disability or special need that requires accommodation, please let us know. If applying for positions in the U.S., must be eligible to work in the U.S. without need for employer sponsored visa (work permit).