Information Security Risk & Compliance Analyst

Information Security Risk & Compliance Analyst

Job Category:
Technology

Requisition Number: INFOR
005128

Full-Time

On-site

Locations:
Showing 1 location

The Identity Access Management (IAM) Analyst is responsible for the development, implementation, and maintenance of the organization's IAM program. This includes the review and attestation of rights and roles in enterprise systems and applications, as well as the development and implementation of technology solutions, policies and procedures to ensure that access is granted and maintained in a secure and compliant manner.

Review and attest to the accuracy and completeness of rights and roles in enterprise systems and applications. This includes ensuring that only authorized users have access to sensitive data and systems, and that access rights are revoked when employees leave the organization.

Develop and implement policies and procedures to ensure that access is granted and maintained in a secure and compliant manner. This includes creating policies that define access rights, procedures for granting and revoking access, and training for employees on how to follow the policies.

Work with business stakeholders to understand their needs and requirements for access to enterprise systems and applications. This includes understanding the business needs for access, and working with stakeholders to develop solutions that meet those needs while still maintaining security.

Communicate security risks and mitigation strategies to business stakeholders. This includes keeping stakeholders informed of the latest security threats, and explaining how the organization is mitigating those threats.

Conduct risk assessments to identify and assess the security risks associated with access to enterprise systems and applications. This includes identifying potential threats and vulnerabilities, assessing the likelihood and impact of those threats, and developing mitigation strategies.

Stay up-to-date on the latest security threats and trends. This includes reading security blogs and articles, attending security conferences, and taking security training courses.

Conduct training and awareness sessions for employees on security best practices. This includes teaching employees about security risks, how to identify and report suspicious activity, and how to protect their personal information.

Bachelor's degree in Information Security, Computer Science, or a related field. Degree may be substituted for 5+ years commensurate experience.

• 3+ years of experience in Identity Access Management (IAM) or related cybersecurity area preferred.
• Experience with risk assessment, policy development, and implementation.
• Experience with enterprise systems and applications.
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Ability to work independently and as part of a team.
• General understanding of risk management.
• Knowledge of security methodology frameworks and regulatory requirements such as NIST, CIS, HIPAA, PCI, and FFIEC.

This position is on-site located in Oklahoma City, must reside within the area to be considered.

Position requires a minimum of 3 years of relevant US based experience.

Equal Opportunity Employer / Protected Veterans / Individuals with Disabilities

This employer is required to notify all applicants of their rights pursuant to federal employment laws. For further information, please review the Know Your Rights notice from the Department of Labor.