InfoSec GRC Analyst (St. Louis)

at World Wide Technology in Chicago, Illinois, United States Job Description

PLEASE NOTE

: This position requires permanent U.S. work authorization. Candidates requiring current or future visa sponsorship, including those on

F-1/ OPT

, CPT or H1B, are not eligible for this role. This role is not open for staffing partners or corp-to-corp candidates. At World Wide Technology, we work together to make a new world happen. Our important work benefits our clients and partners as much as it does our people and communities across the globe. WWT is dedicated to achieving its mission of creating a profitable growth company that is also a Great Place to Work for All. We achieve this through our world-class culture, generous benefits and by delivering cutting-edge technology solutions for our clients. Founded in 1990, WWT is a global technology solutions provider leading the AI and Digital Revolution. WWT combines the power of strategy, execution and partnership to accelerate digital transformational outcomes for organizations around the globe. Through its Advanced Technology Center, a collaborative ecosystem of the world's most advanced hardware and software solutions, WWT helps clients and partners conceptualize, test and validate innovative technology solutions for the best business outcomes and then deploys them at scale through its global warehousing, distribution and integration capabilities. With over 12,000 employees across WWT and Softchoice and more than 60 locations around the world, WWT's culture, built on a set of core values and established leadership philosophies, has been recognized 14 years in a row by Fortune and Great Place to Work® for its unique blend of determination, innovation and creating a great place to work for all. Want to work with highly motivated individuals on high-performance teams? Join WWT today! About This Position -

Empower Security, Elevate Compliance:

Be the Force Behind WWT's Resilient Future Step into a dynamic role as an Information Security (InfoSec) Governance, Risk, and Compliance ( GRC ) Analyst within Audit and Compliance, where you will be at the forefront of driving operational excellence within the Audit and Compliance team. In this position, you will play a vital part in ensuring WWT's compliance landscape remains robust and agile. From monitoring evolving regulations and shaping control frameworks to coordinating audits and delivering impactful training, you will collaborate with diverse teams and help safeguard organizational integrity. If you are passionate about navigating the fast-paced world of information security, building cross-functional partnerships, and making a tangible difference in a world-class technology environment, this is the opportunity for you. Driving Operations w ithin the InfoSec GRC Team As an InfoSec GRC analyst, you are expected to: + Leverage artificial intelligence (AI) powered tools to automate compliance monitoring, risk analysis, and evidence collection processes, enhancing efficiency and accuracy within InfoSec GRC operations. + Support the monitoring and analysis of emerging regulations and standards. + Offer guidance on the implementation of new regulatory requirements and standards, as well as recommendations for remediating identified issues. + Contribute to the development, implementation, and ongoing maintenance of control frameworks across WWT . + Perform regular reviews and evidence collection in relation to WWT compliance controls. + Aid in the creation and upkeep of WWT's control mappings to identify overlaps or gaps. + Assist with the preparation and maintenance of documentation required for InfoSec GRC audit and compliance activities. + Coordinate on-site audit logistics, including room reservations, resource scheduling, and catering arrangements. + Administer audit vendor requirements and manage document repositories through vendor portals and scheduled meetings. + Assist with the formulation and communication of audit plans, timelines, and progress updates to relevant stakeholders. + Support the design and delivery of training sessions related to controls, standards, and regulations for audit personnel. + Record and track risks, issues, decisions, dependencies, and action items associated with audit and compliance initiatives. + Provide status and tracking updates on compliance efforts via status meetings, request logs, and other appropriate channels. + Foster and sustain collaborative relationships with departments, such as Finance, Risk, Compliance, and Legal.

RESPONSIBILITIES

: As an InfoSec GRC analyst, you are expected to: + Leverage artificial intelligence (AI) powered tools to automate compliance monitoring, risk analysis, and evidence collection processes, enhancing efficiency and accuracy within InfoSec GRC operations. + Support the monitoring and analysis of emerging regulations and standards. + Offer guidance on the implementation of new regulatory requirements and standards, as well as recommendations for remediating identified issues. + Contribute to the development, implementation, and ongoing maintenance of control frameworks across WWT . + Perform regular reviews and evidence collection in relation to WWT compliance controls. + Aid in the creation and upkeep of WWT's control mappings to identify overlaps or gaps. + Assist with the preparation and maintenance of documentation required for InfoSec GRC audit and compliance activities. + Coordinate on-site audit logistics, including room reservations, resource scheduling, and catering arrangements. + Administer audit vendor requirements and manage document repositories through vendor portals and scheduled meetings. + Assist with the formulation and communication of audit plans, timelines, and progress updates to relevant stakeholders. + Support the design and delivery of training sessions related to controls, standards, and regulations for audit personnel. + Record and track risks, issues, decisions, dependencies, and action items associated with audit and compliance initiatives. + Provide status and tracking updates on compliance efforts via status meetings, request logs, and other appropriate channels. + Foster and sustain collaborative relationships with departments, such as Finance, Risk, Compliance, and Legal. Minimum Required Knowledge + General understanding of audit and compliance methodologies, and familiarity with industry-accepted standards and frameworks. + Skilled in communicating audit plans, timelines, and progress updates to stakeholders in a clear and timely manner. + Experience designing and delivering training related to controls, standards, and regulations for audit teams. + General knowledge of System and Organization Controls ( SOC ) audit reports. + General knowledge of User Access Review processes of systems and tools. + General in information security best practices?and frameworks, including (but not limited to)? NIST Special Publications and Cyber Security Framework, CIS Controls, ISO / IEC 27000 series, and OWASP ?Top 10. + Competence in tracking and recording risks, issues, decisions, dependencies, and action items for audit and compliance initiatives. + Ability to provide status and tracking updates on compliance efforts through meetings and reporting tools. + Strong collaboration skills, with the ability to build relationships with Finance, Risk, Compliance, Legal, and other departments. + Possess general knowledge of laws and regulations pertinent to information security and the organization. + Demonstrate familiarity with information security best practices and recognized frameworks. + Excellent verbal and written communication skills.? Able to communicate persuasively and influence others.?? + Ability to work independently and collaboratively in a fast-paced environment. + Demonstrate professional skepticism to ensure evidence is sufficient when assessing the relevant i To view full details and how to apply, please login or create a Job Seeker account