Alignity · 2 days ago
Cyber Control Findings Analyst
Wonder how qualified you are to the job?
Digital MarketingInformation Technology
Insider Connection @Alignity
Responsibilities
Risk and Vulnerability Analysis: Perform assessments, validation tests, compliance reviews, and audits in line with NIST standards.
Audit Management: Oversee and support SOC 2 and global ISO 27001 audits.
ISO 27001 Implementation: Promote the adoption of ISO 27001 standards across the organization.
Audit Documentation: Manage and maintain a centralized repository for audit evidence.
Stakeholder Communication: Communicate critical issues and risks to relevant stakeholders.
Departmental Collaboration: Collaborate with corporate IT, procurement, and privacy departments to align with GRC (Governance, Risk, and Compliance) goals.
Industry Knowledge: Stay current with industry standards and practices.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor’s degree in cybersecurity, risk management, governance, or a related discipline.
Over 5 years of direct experience in information security, particularly in risk and compliance.
Expertise in conducting ISO 27001 and SOC 2 audits and managing audit responses.
Knowledge of relevant regulatory compliance standards (ISO 27001, SOC 2, NIST, FedRamp, CMMC, PCI, GDPR, etc.).
Familiarity with identity management protocols, cloud storage solutions, and disaster recovery.
Proficiency in GRC tools and best practices (e.g., ZenGRC, OneTrust, Archer).
Strong attention to detail and excellent communication skills.
Preferred
Certifications such as ISO 27001 Lead Auditor, CISA, CISM, or CISSP.