Cybersecurity GRC Analyst- #26-07647

Contract Duration

18 months with possibility of extension

Job Description

• Lead the creation, drafting, and finalization of comprehensive cyber system risk reports for internal clients and stakeholders.
• Translate and synthesize complex technical findings from Threat and Risk Assessments (TRAs) and penetration tests into clear, actionable business insights for non-technical stakeholders.
• Quickly integrate into the existing Assurance team workflow and manage the cyber risk reporting queue for the duration of the engagement.
• Apply industry-standard cyber risk frameworks, including National Institute of Standards and Technology (NIST) and the Harmonized Threat and Risk Assessment (HTRA) methodology, to assess, document, and communicate risk.
• Document, track, and report cyber risks in ServiceNow Governance, Risk Compliance (GRC), including risk register entries, treatment plans, exceptions, and remediation tracki...