Current jobs related to GRC Security Risk Specialist - Chicago - Request Technology

  • GRC Compliance Specialist

    3 weeks ago

    Chicago, United States Health Care Service Corporation Full time

    About the RoleWe are seeking a highly skilled GRC Compliance Specialist to join our team at Health Care Service Corporation. As a key member of our IT Governance, Risk, and Compliance (GRC) program, you will play a vital role in ensuring the effective management of risk and compliance across our organization.Key ResponsibilitiesReview and revise contractual...

  • GRC Compliance Specialist

    3 days ago

    Chicago, Illinois, United States Wipro Full time

    {"title": "GRC Compliance Specialist", "description": "About WiproWipro Limited is a leading technology services and consulting company that helps clients navigate their digital transformation journey.We leverage our capabilities in consulting, design, engineering, operations, and emerging technologies to deliver innovative solutions that address clients'...

  • Senior Security GRC Analyst

    4 months ago

    Chicago, United States InRule Technology, Inc. Full time

    Job DescriptionJob DescriptionAt InRule Technology, we revolutionize the way organizations in more than 40 countries worldwide make mission-critical decisions by infusing cutting-edge technology into their processes. Some of the largest banks, insurance companies, healthcare organizations, and governments rely on InRule to deliver frictionless, intuitive...

  • Security Governance Specialist II

    2 weeks ago

    Chicago, Illinois, United States Kirkland & Ellis Full time

    About Kirkland & EllisWe are a leading global law firm with a long history of excellence. Our core values of collaboration, talent empowerment, service, inclusion, respect, and gratitude guide us in achieving exceptional service to our clients and fostering a culture of innovation and inclusion.Job Title: Security Governance Specialist IIWe are seeking a...

  • Lead Governance, Risk, and Compliance Security Analyst

    4 weeks ago

    Chicago, Illinois, United States InRule Technology, Inc. Full time

    Senior Security GRC Analyst at InRule Technology, Inc.InRule Technology, a prominent innovator in delivering cutting-edge solutions for diverse industries globally, is seeking a dedicated Senior Security GRC Analyst. This role is essential in advancing our sophisticated AI Decisioning platform, which seamlessly combines declarative logic, non-declarative...

  • GRC Analyst

    3 weeks ago

    Chicago, United States Health Care Service Corporation Full time $53,500 - $118,100

    At HCSC, our employees are the cornerstone of our business and the foundation to our success. We empower employees with curated development plans that foster growth and promote rewarding, fulfilling careers.If the following job requirements and experience match your skills, please ensure you apply promptly.Join HCSC and be part of a purpose-driven company...

  • Senior Cyber Security Governance and Risk Analyst

    4 weeks ago

    Chicago, Illinois, United States The AZEK Company Full time

    Senior Analyst, Cyber Security Governance, Risk & ComplianceCompany OverviewThe AZEK Company is a premier manufacturer of cutting-edge, sustainable building materials, committed to transforming the utilization of recycled resources. Our pursuit of excellence propels us to design high-quality solutions for both residential and commercial sectors,...

  • Senior Cyber Security Governance and Risk Analyst

    4 weeks ago

    Chicago, Illinois, United States The AZEK Company Full time

    Senior Analyst, Cyber Security Governance, Risk & ComplianceCompany OverviewThe AZEK Company stands at the forefront of sustainable building product manufacturing, committed to innovating with recycled materials. Our dedication to quality drives us to create superior residential and commercial solutions that are transforming the industry.We pride ourselves...

  • SAP GRC Manager

    11 hours ago

    Chicago, Illinois, United States KPMG Full time

    Join KPMG's Advisory PracticeWe are seeking a highly skilled SAP GRC Manager to join our Enterprise Solutions team in the Consulting practice. As a key member of our team, you will be responsible for planning and executing client engagements focusing on SAP GRC, SAP security, and SAP controls optimization.Key Responsibilities:Evaluate the design and...

  • Sr. Analyst, Cyber Security Governance, Risk

    3 months ago

    Chicago, United States The AZEK Company Full time

    Sr. Analyst, Cyber Security Governance, Risk & ComplianceThe AZEK Company Location Chicago, IL; Wilmington, OH or Scranton, PA.The AZEK Company () is a $1.2+ billion, and growing, industry-leading manufacturer of beautiful, low-maintenance building products, and is highly committed to accelerating the use of recycled materials. We use our expertise in...

  • Sr. Analyst, Cyber Security Governance, Risk

    4 months ago

    Chicago, United States The AZEK Company Full time

    Sr. Analyst, Cyber Security Governance, Risk & ComplianceThe AZEK Company Location Chicago, IL; Wilmington, OH or Scranton, PA.The AZEK Company (www.azekco.com) is a $1.2+ billion, and growing, industry-leading manufacturer of beautiful, low-maintenance building products, and is highly committed to accelerating the use of recycled materials. We use our...

  • IT Risk Management Specialist

    4 weeks ago

    Chicago, Illinois, United States Insight Global Full time

    Position Overview:The IT Risk Management Specialist plays a crucial role in advancing the information technology risk framework and strategic direction. This position involves enhancing existing capabilities and overseeing the daily operations related to IT risk management. Key Responsibilities:This role will be instrumental in driving continuous...

  • GRC Consultant

    1 month ago

    Chicago, United States Wipro Full time

    About Wipro : Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients most complex digital transformation needs. We leverage our holistic portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to help...

  • Information Security Governance Specialist

    4 weeks ago

    Chicago, Illinois, United States RED SKY Consulting Full time

    Position Title: Information Security Governance SpecialistEmployment Type: Direct HireWork Arrangement: Hybrid Onsite (3 days a week)Overview:The Information Security Governance Specialist plays a pivotal role within the Governance, Risk, and Compliance (GRC) team, overseeing and executing essential services related to information security. This position is...

  • ServiceNow GRC/IRM Product Owner

    3 weeks ago

    Chicago, Illinois, United States Northern Trust Corporation Full time

    About Northern Trust Corporation:Northern Trust Corporation, a leading global financial institution, has been in continuous operation since 1889.The company is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions by remaining true to its enduring principles of service, expertise,...

  • GRC Consultant

    2 months ago

    Chicago, United States Wipro Full time

    About Wipro :Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs.We leverage our holistic portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to help...

  • GRC Consultant

    2 months ago

    Chicago, United States Wipro Full time

    About Wipro :Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients’ most complex digital transformation needs.We leverage our holistic portfolio of capabilities in consulting, design, engineering, operations, and emerging technologies to help...

  • Chief Technology Officer for GRC

    3 weeks ago

    Chicago, Illinois, United States Northern Trust Full time

    About Northern TrustNorthern Trust is a leading global financial institution with a rich history dating back to 1889. As a Fortune 500 company, we have established ourselves as a trusted provider of innovative financial services and guidance to the world's most successful individuals, families, and institutions.We are committed to upholding our core values...

  • Risk Management Specialist

    18 hours ago

    Chicago, Illinois, United States Robinhood Full time

    About the RoleWe are seeking a highly skilled Risk Management Specialist to join our team at Robinhood. As a key member of our Brokerage Risk Management Department, you will play a crucial role in overseeing the comprehensive risk management frameworks of our brokerages.Key ResponsibilitiesConduct risk assessments and perform control testing to identify and...

  • Safety and Security Specialist

    4 weeks ago

    Chicago, Illinois, United States Halo Security Group Full time

    Job Title: Safety and Security SpecialistWe are seeking a dedicated Safety and Security Specialist to ensure the protection of our facilities. In this role, you will be responsible for monitoring and safeguarding designated areas while assessing potential threats to both employees and visitors.Key Responsibilities:Observe the premises to prevent theft,...

GRC Security Risk Specialist

3 months ago

Chicago, United States Request Technology Full time

***We are unable to sponsor for this permanent full-time role***

***Position is bonus eligible***

Prestigious Global Firm is currently seeking a GRC Security Risk Specialist. Candidate will work on the Governance, Risk Compliance team, leads and executes the programs within the GRC team, is a subject matter expert for Information Security (consulting to technical / non-technical management and the user community), and performs key risk management functions within the Security Governance department. Primary functions include life-cycle management of client responses, Policy & Standards life-cycle management, Security Vendor Risk program management, Security Awareness, Controls Assurance, and GRC platform and program management.

Responsibilities:

  • Respond to security assessments, questionnaires and audits from clients and third-party business partners in a timely manner. Document and perform assessments as needed.
  • Technical writing for policies, standards and communications. Lead in the creation and maintenance of security policies, standards, processes guidelines and support documentation.
  • Lead, evaluate, and supports the processes necessary to assure that Information Technology (IT) systems meet the organization's cyber security and risk requirements.
  • Ensures appropriate treatment of risk, compliance, and assurance from internal and external perspectives.
  • Serve as a subject matter expert for Information Security consulting to technical / non-technical management and staff.
  • Manage and support the 3rd Party Security Vendor Risk Management program and lifec-ycle.
  • Manage the exception request process and consult as needed.
  • Lead the Security Awareness program. This includes road-map development, measurement, and evaluation of cyber training/education courses and methods based on instructional needs.
  • Management and support of the GRC technology platforms.
  • Conduct evaluations of an IT program or its individual components to determine compliance with published standards.

Qualifications:

  • Bachelor's degree or five (5) years of work experience in IT Security is required.
  • Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.
  • Strong knowledge on Security frameworks and technologies such as ISO 27001, NIST, SOC, SIG is required
  • Prior IT Security experience in the legal industry experience is preferred.
  • Technical writing experience is required. Experience with instructional content, educational writing, and technical writing strongly preferred.
  • Four (4) years of Information Security experience required. Those containing hands on technical experience are preferred.
  • Three or more years of experience managing timelines and being self-directed preferred.
  • Governance, Risk, and Compliance (GRC) tool management (Administrative and/or Engineering) is preferred.
  • Client focus, including tact and diplomacy is required.
  • Interview, gather, and understand content from subject-matter experts
  • Maintain accurate records and manage client security and risk requests
  • Ability to perform as primary Security Subject Matter Expert (SME).
  • Ability to facilitate and lead project and vendor risk assessments with relative independence and provide guidance on secure design and operation.
  • Ability to independently complete and assist in completing client security questionnaires and security assessments concerning the Firm s security program and controls.
  • Demonstrate the ability to create and maintain security policy, standard, guideline and procedure documents.
  • Demonstrate the ability to communicate effectively technical topics at an appropriate level of detail to varied audiences - including IT Subject Matter Experts, senior management and non-technical users.
  • Communicates succinctly and effectively
  • Strong organization and problem-solving skills required
  • Strong project and time management skills required
  • Strong reading comprehension skills required
  • Strong analytical ability with excellent written and verbal communication skills required
  • Strong PC skills with Microsoft (i.e. Word, Excel, PowerPoint) required
  • Ability to work independently and as a group member is required
  • SharePoint administration is preferred for team intranet site management
  • Broad awareness of and exposure to diverse security tools and their capabilities, including commercial and open-source options.
  • Strong knowledge of risk management principles and practices.
  • Strong knowledge of security administration and role-based security controls.
  • Strong knowledge and use of GRC platforms.
  • Knowledge of host and network-based anti-malware technologies.
  • Knowledge of authentication technologies and interactions between diverse authentication platforms, both on-site and remote.
  • Knowledge of client and server firewalling technologies and capabilities.
  • Knowledge of security event management (SIEM), event correlation and analysis technologies.
  • Knowledge of data encryption technologies.
  • Strong knowledge of Intrusion Detection and Intrusion Prevention technical capabilities.
  • Knowledge of web filtering and email SPAM prevention techniques.
  • Knowledge of vulnerability assessment and forensic investigations tools.
  • Knowledge of mobile device security and Mobile Device Management solutions.
  • Knowledge of Privileged Access Management technologies.

Preferred Skills:

  • Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), or other relevant training and certifications are preferred.