Technician, GRC

About The Position

Requirements

• Bachelor’s Degree in science, technology, engineering or math discipline or High School Diploma/GED and 3 years preferred experience
• Less than 1 year related work experience

Nice To Haves

• 3 years related work experience

Responsibilities

• Assist in the implementation of an integrated Governance, Risk, and Compliance (GRC) program and tools to support GRC workflows, which align with organizational objectives and regulatory requirements.
• Apply established enterprise-wide information security policies, standards, and procedures to support robust information security and operational resilience.
• Assist in conducting risk assessments, including business impact assessments, third party risk assessments, and assessments of cloud systems.
• Communicate risk assessment results to requestors.
• Follow-up on the results of risk mitigation strategies documenting the response across business units and with external partners.
• Advance the culture of compliance and resilience by assisting with enterprise-level information security awareness and business resilience training campaigns and tabletop exercises.
• Collaborate with team members to share information, interpret requirements, and resolve issues related to governance, risk and compliance.
• Use dashboards and reports to measure and monitor risk trends, compliance metrics, and strategic security objectives and communicate results to GRC leadership.
• Retrieve data and manually update KPIs as directed.
• Participate in training and learning opportunities to develop skills and stay current with information security best practices.

Benefits

• medical (including prescription)
• supplemental insurance
• dental
• vision
• life and AD&D insurance
• short- and long-term disability
• flexible spending accounts
• retirement plans
• tuition assistance
• voluntary benefits
• tuition discounts at Thomas Jefferson University after one year of full time service or two years of part time service