We have other current jobs related to this field that you can find below

  • Analyst - InfoSec GRC

    6 days ago

    Las Vegas, United States Wynn Resorts Full time

    Company DescriptionJob Description The Analyst - InfoSec GRC (Governance, Risk, and Compliance) is the primary resource supporting the objectives of the GRC team for Wynn Resorts North America. This role performs control testing procedures as part of the InfoSec GRC team of analysts, organizes supporting documentation including architecture diagrams, data...

  • Analyst - InfoSec GRC

    2 months ago

    Las Vegas, United States Wynn Las Vegas Full time

    Job DescriptionJob DescriptionJob DescriptionThe Analyst – InfoSec GRC (Governance, Risk, and Compliance) is the primary resource supporting the objectives of the GRC team for Wynn Resorts North America.This role performs control testing procedures as part of the InfoSec GRC team of analysts, organizes supporting documentation including architecture...

  • GRC Information Security Analyst

    5 days ago

    Las Vegas, Nevada, United States Wynn Las Vegas Full time

    Posición disponible: Analista de Seguridad de la Información GRCEn Wynn Resorts North America, estamos en la búsqueda de un Analista de Seguridad de la Información GRC para unirse a nuestro equipo. Este rol es fundamental para respaldar los objetivos del equipo de GRC.Como Analista en InfoSec GRC, serás responsable de llevar a cabo procedimientos de...

  • Analyst - IT Compliance

    2 months ago

    Las Vegas, United States Wynnsocial Full time

    The Analyst – InfoSec GRC (Governance, Risk, and Compliance) is the primary resource supporting the objectives of the GRC team for Wynn Resorts North America. This role performs control testing procedures as part of the InfoSec GRC team of analysts, organizes supporting documentation including architecture diagrams, data flow diagrams, vendor...

  • Information Security Governance Analyst

    6 days ago

    Las Vegas, Nevada, United States Wynn Las Vegas Full time

    Job OverviewThe Information Security Governance Analyst plays a crucial role in supporting the objectives of the Governance, Risk, and Compliance (GRC) team at Wynn Las Vegas.This position is responsible for executing control assessment procedures as part of the InfoSec GRC team, organizing essential documentation such as architecture diagrams, data flow...

  • Information Security Analyst

    2 months ago

    Las Vegas, United States UNLV Full time

    Job Description The University of Nevada, Las Vegas invites applications for Information Security Analyst (GRC), Office of Information Technology [R0143080] [FLEXIBLE WORK SCHEDULE].ROLE of the POSITIONThe Information Security Analyst (GRC) will work closely with the Director of Business Continuity and Resiliency in the development, support, maintenance, and...

Analyst - InfoSec GRC

2 months ago

Las Vegas, United States Wynn Las Vegas Full time

Wynn Las Vegas is in search of a brilliant Analyst for Governance, Risk, Compliance (GRC) will be the primary resource supporting the objectives by performing control testing procedures as part of the InfoSec GRC team of analysts, organizes supporting documentation including architecture diagrams, data flow diagrams, vendor documentation, etc. to demonstrate effectiveness to internal and external auditors.


Essential Job Duties & Responsibilities:

  • Ensuring and monitoring compliance with industry and government rules and regulations at all levels to support effective and auditable compliance to applicable industry standard and regulations (SOX, PCI, MICS, NIST, HIPAA, etc.)
  • Review and continuously improve written compliance audit and due diligence procedures for execution by various technical and non-technical staff, including other GRC analysts, internal auditors, and IT staff.
  • Support tasks and compliance monitoring of all systems where GRC is the business stakeholder, including tools used for audit automation, asset management, application inventory, change management, and vulnerability management.
  • Share information with managers to avoid surprises, draw attention to problems, and guarantee delivery on time.
  • Identify, evaluate, recommend, and implement technical improvements to mitigate control failures and gaps for stakeholders.
  • Conducts periodic reviews of audits to optimize audit procedures and technical artifacts. Support SOC 2 and global compliance audits.
  • Collaborate with peers and management in various teams to ensure enterprise technical compliance requirements are effectively operationalized. This includes assisting departments in responding to inquiries from the business departments about ongoing operational compliance.
  • Maintain and monitor a central repository for audit evidence.
  • Remain knowledgeable on current best practices and technological advancements and act as a technical resource for security assessment and regulatory compliance.
  • Participation in all training for IT GRC across IT and various business units.
  • Evaluates risks and develops security standards, procedures, and controls to manage risks. Improves security positioning through process improvement, policy, automation, and the continuous evolution of capabilities.
  • Understand and enforce all applicable regulatory requirements and artifacts for control requirements, including but not limited to SOX, PCI-DSS, NIST, and jurisdictional specific Minimum Internal Control Standards (MICS).


Requirements:

  • Bachelor of Science degree in computer science or similar discipline
  • A minimum of two (2) years of equivalent work experience - Two (2) Years of applied work experience in audits, assessments, risk, remediation, cyber security programs, or cyber security compliance management
  • Strong consideration given for compliance related certification or trainings, specifically with one or more of the following certifications or training: CISA, PCI-ISA, Splunk Searching and Reporting
  • Working knowledge of Information technology systems at the application, data, operating system, virtualization, storage, and networking layers is a plus. Willingness to obtain this knowledge is a must
  • Knowledge of applicable information security management, governance, and compliance principles, practices, laws, rules, and regulations
  • Defining problems, collecting, and analyzing data, establishing facts, and drawing valid conclusions
  • Troubleshooting and operating a computer and various software packages. Knowledge of GRC tool techniques is a plus
  • General ability to pull data from database tables, database views, application sources, and other data stores for compliance reporting
  • Familiarity with state, local, federal, and gaming laws & regulations, as well as risk assessment and management methodology
  • Effectively translate industry regulations, standards, and internal controls to all audience types, including non-technical stakeholders and highly technical IT engineers and architects
  • Excellent ability to collaborate with other teams with alternative or conflicting areas of focus
  • Using judgment and ingenuity in maintaining objectives and technical standard
  • Must be a critical thinker with strong problem-solving skills
  • Remain calm under high pressure/difficult situations
  • Maintaining confidentiality
  • Local candidates only *Not able to support Visa holders at this time*