Senior Cyber Risk Analyst (security Framework, Soc, Information Security) @ Kronos Incorporated

Job Description

Description This position works as part of the Governance, Risk and Compliance (GRC) department, which is responsible for management of cyber risk across the enterprise. The role offers the opportunity to be engaged in all facets of cyber risk including security, privacy, and risk management, and security and compliance program development. As a member of the department, the individual will be committed to overall data protection risk management and its role in the company's continued success. The Senior Cyber Risk Analyst is a visible role that interfaces with key stakeholders in the organization and may also support UKG customers and Partners. The position demands an organized, action-oriented team player with the ability to prioritize daily work and support multiple initiatives simultaneously strong communication and customer focus is required.
RESPONSIBILITIES
Support stakeholders responsible for customer hosted environment to ensure control activities are designed and implemented appropriately to protect the security, confidentiality, privacy, integrity, and availability of data in compliance with organization policies and standards
Coordinate with external auditors conducting annual compliance audits by reviewing all evidence to confirm it satisfies the items included in the document request list
Utilize industry experience and knowledge to provide expertise and support to ensure product's security framework remains in compliance with applicable regulations, specifically HIPAA Security and Privacy Rules, SOC2, and ISO27001/17/18.
Identify potential risks to the environment and/or organization based on existing processes
Provide expertise in support of new product development activities to ensure products comply with information security and privacy standards
Support the development, implementation, and updating of relevant documentation (e.g. narratives, how-to documents, etc.)
Perform additional duties and projects as assigned by management
Qualifications A BE/ B.Tech/ MCA degree in Computer Science or IT audit related discipline or equivalent experience and a minimum of 1-3 years work experience in information security governance and/or related functions (such as IT audit or IT Risk Management)
Familiarity with the HIPAA security and privacy rule and its requirements preferred
Experience with information security frameworks, including SOC 2 or ISO27001/17/18
Strong business acumen to include strong verbal and written communication skills
CISA, CISM, CRISC, CISSP, or similar security certification preferred

Employement Category:

Employement Type: Full time
Industry: IT
Functional Area: Advertising, DM, PR, MR & Event Management
Role Category: Software Engineer
Role/Responsibilies: Senior Cyber Risk Analyst (security Framework, Soc, Information Security)

Contact Details:

Company: Kronos Incorporated
Location(s): Noida, Gurugram

+ View Contact