Audit & Risk Mgmt Consultant (Remote EST CST or MST)

About the Business

LexisNexis Risk Solutions is the essential partner in the assessment of risk. Within our Government vertical, our solutions assist government agencies and law enforcement to drive insights from complex data sets, improving operation efficiency, increasing program integrity, discovering, and recovering revenue, and making timely and informed decisions to enhance investigations.

About our Team

The Government Security Compliance team supports Federal and State & Local agencies in ensuring compliance with data integrity and confidentiality standards. The team collaborates across functions to conduct comprehensive security audits, maintain compliance with relevant industry requirements, and address regulatory changes within the organization.

Ensuring security compliance is essential for the daily operations of every organization. Are you ready to elevate your career by ensuring top-notch security compliance in a dynamic and innovative company? If this is you, come be a part of a dynamic team supporting world class solutions for the government.

Only candidates in Eastern, Central, or Mountain time zones will be considered due to client’s location and regular interactions with them.

• Conduct internal and customer audit and security assessment requests to document compliance with the FBI’s CJIS Security Policy.
• Work with agencies to determine audit and assessment requirements, develop project plans with milestones, and ensure completion with minimal supervision.
• Identify risks and issues and facilitate their resolution.
• Participate in project meetings to provide updates and deliverables.
• Track audit and assessment follow-up and remediation activities with POAM documentation.
• Liaise with internal teams to enhance understanding of the FBI's CJIS Security Policy (CSP).
• Coordinate with third-party auditors to ensure timely delivery and accuracy of documentation, arrange meetings with control owners, gather audit evidence, and prepare work papers.
• Identify control gaps and recommend process improvements to the Director of Security and Compliance.
• Collaborate with the internal data protection teams for implementation of remediation and control improvements and support the privacy programs group in maintaining inventories of applications and systems in scope for assessments, updated annually.
• Represent CJIS requirements in product development and go-to-market initiatives.
• Lead, manage, coordinate, track, and identify gaps for all compliance assessments including PCI DSS, SOC 1, SOC 2, and NIST, applying the same level of rigor and oversight as with CJIS assessments.

• Bachelor’s Degree in MIS, Computer Science, or Legal Studies
• IT or Security experience (such as development, QA, system administration) preferred
• Strong written and verbal communication skills
• Ability to research technologies, system controls, and audit topics online
• Proficiency with Microsoft Access, PowerPoint, Excel, and Word
• Progress towards CISA or CIPP certification
• US Citizenship required
• Ability to travel 25%

Physical and/or logical access to criminal justice information is an essential function of this role. The successful candidate will be required to pass both the standard company background check for all employees and an enhanced criminal background check conducted by the Company’s state and local law enforcement partners conducted in compliance with the FBI’s Criminal Justice Information System (“CJIS”) security policy.

U.S. National Base Pay Range: $102,800 - $171,300. Geographic differentials may apply in some locations to better reflect local market rates.

This job is eligible for an annual incentive bonus.

We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know.

We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law.