Senior IT Governance Analyst
Summary
We are looking for a Senior IT Governance Analyst to structure and enhance the company's governance and information security processes. This professional will play a key role in implementing and monitoring controls required for SOC 2 Type 2 and ISO 27001 certification, ensuring compliance with industry best practices.
The primary focus will be on defining and enforcing policies, processes, and audits to strengthen corporate governance and implementing strategic KPIs for continuous monitoring.
Key Responsabilities
Structure and implement IT governance processes, aligned with ISO 27001 and SOC 2 Type 2 standards.
Define, review, and ensure compliance with information security and governance policies.
Implement and monitor internal controls and audits to mitigate technology risks.
Support the development of the Business Continuity Plan (BCP) and Disaster Recovery Plan (DRP).
Define and track governance and information security KPIs.
Collaborate with the Cybersecurity team to ensure regulatory compliance and mitigate cybersecurity risks.
Support external audits and work on remediation of identified deficiencies.
Ensure processes comply with data privacy regulations (GDPR, if applicable).
Implement change management practices to ensure all system and process modifications are properly documented and approved.
Skills and Qualifications
Proven experience in IT governance.
Proven experience in implementing ISO 27001 and SOC 2 standards.
Advanced knowledge of ISO 27001, SOC 2 Type 2, ITIL, and COBIT.
Experience with internal and external security audits.
Ability to structure risk management and regulatory compliance processes.
Capability to map and implement continuous improvements in IT operational processes.
Experience in defining and monitoring governance and security KPIs.
Nice to have
Certifications such as ISO 27001 Lead Implementer/Auditor, CISM, CRISC, CISSP.
Experience in the Cloud Computing or Technology industry.
What We Offer
Competitive salary and performance-based bonuses.
Health, dental, and vision insurance.
Professional development opportunities (training, certifications, conferences).
A collaborative culture that values innovation and growth.
Average salary estimate
If an employer mentions a salary or salary range on their job, we display it as an "Employer Estimate". If a job has no salary data, Rise displays an estimate if available.
Lead application projects and support for DCH Health System, translating clinical requirements into high-quality application builds while mentoring staff and collaborating with vendors and Informatics.
Lead BusPatrol's Salesforce ecosystem as the strategic and operational Platform Owner, driving governance, integrations, and delivery to support mission-critical field service and customer operations.
Experienced Business Systems Analyst needed to lead deposit-focused IT projects and translate business requirements into enterprise solutions in a hybrid/remote Huntington environment.
Protect the organization's API ecosystem by designing secure APIs, automating detection and remediation, and collaborating with engineering teams as an API Security Engineer on a remote US-based team.
An experienced Sr. Network Specialist is needed to lead WAN engineering, automation, and enterprise network deployments supporting remote customer connectivity and scaled services delivery.
Experienced SAP BTP Consultant needed for an onsite, long-term contract in Raritan, NJ to design, secure, and integrate BTP solutions with SAP S/4HANA, ECC, Fiori, and third-party systems.
Rackspace Technology seeks a Network Engineer II in the Seattle area to monitor, troubleshoot, and resolve complex network issues for a VIP healthcare customer in a hybrid remote/onsite role.
At LinkedIn, a Senior Trust Investigator - Threat Tracking will lead detection, analysis, and mitigation of coordinated fraud and abuse campaigns to safeguard platform integrity.
Lead OCT Consulting’s ServiceNow practice as a Senior Architect, designing scalable, secure, AI-enabled platform solutions for federal clients and shaping the practice’s technical strategy.
Experienced System Analyst with strong data modeling and requirements-writing skills needed to translate complex business needs into actionable system designs for a U.S.-based, remote-friendly team.
Lead Northside Hospital's Cyber Security Operations and SOC to detect, disrupt, and remediate threats while ensuring compliance with healthcare regulations.
Emory University is hiring a Network Engineer to design, operate, and troubleshoot enterprise voice, data, and wireless networks while providing NOC and on-call support.
Senior Security Engineer specializing in Identity to architect and operate SailPoint and PAM solutions (CyberArk preferred) for a remote U.S.-based team focused on secure, scalable access management.
🔮
Hi, I'm Risa! Your AI Career Copilot
you, just ask me below!
