GRC Analyst

Job not on LinkedIn

November 13

Apply Now

Receive Emails with Similar Jobs

Michael Saunders & Company

WebsiteLinkedInAll Job Openings

Real Estate • Luxury • eCommerce

Michael Saunders & Company is a licensed real estate broker based in Sarasota, Florida, specializing in luxury real estate services. With nearly 50 years of experience, the company operates 17 real estate offices and employs over 600 agents across Sarasota, Manatee, and Charlotte counties. They offer a range of services including buying and selling homes, title insurance, rental services, and relocation assistance, while also being partnered with Forbes Global Properties to provide exclusive opportunities in the luxury market.

501 - 1000 employees

Founded 1976

🏠 Real Estate

🛍️ eCommerce

📋 Description

• Third Party Risk Management • Provide oversight, coordination, and deliver the activities supporting successful risk management activities around third parties • Perform risk analysis for systems, processes, third-party tools/applications, and configurations • Perform Third Party Risk Management (TPRM) functions and analyze SOC-2 and other reporting from vendors • Respond to initial and annual security questionnaires from customers • Manage company’s Risk Register • Perform periodic risk assessments • Document the results and develop a plan of action and milestones for mitigating identified risk • Gather data for metric reporting for company’s Information Security and Privacy Council • Coordinate multiple large-scale audit projects and programs simultaneously • Help implement Governance, Risk and Control tool • Document business ownership and responsibilities of security controls using the company’s GRC tool • Schedule and perform regular assessments (internal and external) to test the effectiveness of controls • Manage remediation efforts for the identified gaps including assessment of new or enhanced implemented controls • Coordinate, track, and verify remediation of audit findings • Maintain Suzy’s information asset inventory with accurate and updated information • Identify and rank the value, sensitivity, and criticality of the operations and assets that could be affected should a threat materialize

🎯 Requirements

• Creative problem solver and desire to learn • Willing to #getyourhandsdirty and work across cross-functional teams • Bachelor’s degree or equivalent work experience (Information Technology, Engineering, Cybersecurity, Audit, Risk, Compliance, or a related technical field) • Familiarity with industry security frameworks, including SCF, ISO, SOC, and NIST • Audit, compliance, and/or risk management experience • Experience in Project Management Methodologies • Experience testing or auditing technical controls

🏖️ Benefits

• We take care of our employees and their families. We have generous health dental and vision benefits, and our 401K plan vests immediately • A friendly, fun, and collaborative work environment that allows for frequent exposure to executives • The opportunity to make an immediate impact as a part of a fast-growing company