Junior GRC Analyst (ID 59656)

WE ARE

SoftServe is seeking a Security Governance, Risk, and Compliance (GRC) Analyst to work in a team environment to lead security governance processes and to identify, measure, and report risks associated with SoftServe IT systems and applications. IS Manager, the Security GRC Analyst will audit and document IT compliance, analyze the effectiveness of IT controls such as change management processes and user provisioning lifecycles, and will operate tools that enable automated management of elevated system access within the SoftServe IT environment.

YOU ARE

• Able to work on multiple projects
• Having knowledge of threat modeling or other risk identification techniques, system security vulnerabilities and remediation techniques
• Able to lead meetings, record meeting minutes and document decision outcomes
• Experienced using change management, as well as help desk
• Proficient in process development, analysis, implementation, and continuous improvement methodologies preferred
• An owner of excellent analytic skills
• Able to describe processes and create technical documentation
• Experienced in records inventories and developing of file plans
• Detail-oriented with strong organizational and prioritization skills
• Showing strong communication and written skills
• Demonstrating Upper-Intermediate English level (both speaking and writing)

Nice to have such expertise

• IT control frameworks such as ITIL, COBIT, and ISO/27002
• Knowledge of data protection regulation (GDPR), which will be a benefit

YOU WANT TO WORK WITH

• Annual Security Risk Assessment, documenting identified system vulnerabilities, mitigating controls and residual risk(s) for Executive sign off
• Various audit teams (internal and external) to track system and application security weaknesses from identification to remediation/risk acceptance
• Contributing to the assurance of adherence to corporate policies and documented internal controls
• Collaborating with different departments to describe processes
• Gap analysis of processes to define possible non-compliance
• Performing any and all functions necessary for the successful operation of the company as determined by IS Manager

TOGETHER WE WILL

• Enjoy the ability to offer and implement your own solutions
• Participate in international project activities
• Enable the possibility to work remotely
• Have access to robust educational and mentorship programs
• Share with you a package of benefits (medical insurance/additional (paid) vacation, anniversary gifts/corporate) and foreign language classes)