Enable job alerts via email!
Analyst, Security Program Strategy Controls Assurance
System One
Ashburn (VA)
Remote
USD 80,000 - 120,000
Full time
16 days ago
Boost your interview chances
Create a job specific, tailored resume for higher success rate.
Create a job specific, tailored resume for higher success rate.
Job summary
A leading company is seeking a Controls Testing Analyst for a multiyear contract role. The successful candidate will be responsible for planning and executing IT and Information Security controls testing in an Agile environment. Candidates must possess relevant certifications and demonstrate strong analytical and communication skills. This position allows for remote work, offering flexibility.
Qualifications
- Experience in control testing and audit assessments is crucial.
- Bachelor's degree in relevant field or equivalent experience is required.
- Strong communication, analytical, and planning skills are essential.
Responsibilities
- Plan and execute testing of IT and Information Security controls.
- Document findings and present results to leadership.
- Create test strategies and perform walk-throughs with stakeholders.
Skills
Control Testing
Risk Assessment
Audit
Information Security
Technical Writing
Planning
Communication
Analytical Skills
Problem Solving
Education
Bachelor's Degree in Business, Information Systems or related field
CISSP, CISA, CCSP, CRISC or other Information Security certifications
Job description
Controls Testing Analyst
Location:REMOTE
Pay Rate: Open to Both C2C and W2 options
Position Type: Multiyear Contract
Basic Purpose:
The Analyst will serve in an Asset Based Testing role that will help plan, scope, execute, and report testing of IT and Information Security controls. The Analyst will be responsible for all phases of the assessment and communications with business partners and other stakeholders. They will work in an Agile environment.
Responsibilities:
• Planning & Scoping of Asset Based Assessments to include development of communications, risk & control matrices, scope documents and other supporting information
• Perform walk-throughs with business partners identifying actual versus expected controls
• Create test strategies to test actual controls
• Document all work performed to meet the IIA reperformance standard
• Document issues and final reports
• Present to leadership results of assessments
Qualifications:
• Experience in control testing to include experience in some of the three lines of defense (Audit, ERM, First Line areas)
• Experience in audit and information security risk assessments
• Knowledge of applicable federal and state laws, rules and regulations (i.e. Federal Financial Institutions Examination Manual (FFIEC), National Information of Standards and Technology (NIST), and International Standards Organization (ISO)
• Knowledge of NCUA, FFIEC, GLBA, NIST (including the Cyber Security Framework and 800 Series), ISO 27001/27002, SANS/CIS 20, PCI DSS, and other Information Security requirements and frameworks
• Experience in working with all levels of staff, management, stakeholders, and third parties
• Effective planning and organizational skills
• Effective research, analytical and problem solving skills
• Strong verbal, written and interpersonal communication skills, including technical writing
• Bachelor Degree in business, information systems or related field or equivalent work/military experience
• CISSP, CISA, CCSP, CRISC or other Information Security certifications
• Ability to present findings and conclusions clearly and concisely
• Experience in working with all levels of staff, management, stakeholders, and third parties
• Ability to build effective relationships through rapport, trust, diplomacy, and tact
• Strong word processing and spreadsheet software skills
Ref: #850-Rockville (ALTA IT)
Location:REMOTE
Pay Rate: Open to Both C2C and W2 options
Position Type: Multiyear Contract
Basic Purpose:
The Analyst will serve in an Asset Based Testing role that will help plan, scope, execute, and report testing of IT and Information Security controls. The Analyst will be responsible for all phases of the assessment and communications with business partners and other stakeholders. They will work in an Agile environment.
Responsibilities:
• Planning & Scoping of Asset Based Assessments to include development of communications, risk & control matrices, scope documents and other supporting information
• Perform walk-throughs with business partners identifying actual versus expected controls
• Create test strategies to test actual controls
• Document all work performed to meet the IIA reperformance standard
• Document issues and final reports
• Present to leadership results of assessments
Qualifications:
• Experience in control testing to include experience in some of the three lines of defense (Audit, ERM, First Line areas)
• Experience in audit and information security risk assessments
• Knowledge of applicable federal and state laws, rules and regulations (i.e. Federal Financial Institutions Examination Manual (FFIEC), National Information of Standards and Technology (NIST), and International Standards Organization (ISO)
• Knowledge of NCUA, FFIEC, GLBA, NIST (including the Cyber Security Framework and 800 Series), ISO 27001/27002, SANS/CIS 20, PCI DSS, and other Information Security requirements and frameworks
• Experience in working with all levels of staff, management, stakeholders, and third parties
• Effective planning and organizational skills
• Effective research, analytical and problem solving skills
• Strong verbal, written and interpersonal communication skills, including technical writing
• Bachelor Degree in business, information systems or related field or equivalent work/military experience
• CISSP, CISA, CCSP, CRISC or other Information Security certifications
• Ability to present findings and conclusions clearly and concisely
• Experience in working with all levels of staff, management, stakeholders, and third parties
• Ability to build effective relationships through rapport, trust, diplomacy, and tact
• Strong word processing and spreadsheet software skills
Ref: #850-Rockville (ALTA IT)
Get your free, confidential resume review.
or drag and drop a PDF, DOC, DOCX, ODT, or PAGES file up to 5MB.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
Similar jobs
HHS - Personnel Security Specialist
Davita Inc.
Washington
Remote
USD 55,000 - 85,000
4 days ago
Be an early applicant
Senior Penetration Tester (REMOTE)
GEICO
Chevy Chase
Remote
USD 85,000 - 260,000
4 days ago
Be an early applicant
Information Security Analyst (GRC – SOC 2)
Confluence Technologies, Inc.
Remote
USD 80,000 - 120,000
Yesterday
Be an early applicant
Information Technology - Information Security Analyst Specialist
Apex Systems
Virginia
Remote
USD 100,000 - 150,000
Yesterday
Be an early applicant
Information Technology - Information Security Analyst Specialist
Apex Systems
Virginia
Remote
USD 100,000 - 130,000
Yesterday
Be an early applicant
Information Technology Security Analyst
Hanalytica GmbH
Remote
USD 100,000 - 115,000
Yesterday
Be an early applicant
Land a better
job faster
job faster
