Information Security Risk Officer

Job Summary

A company is looking for an Information Security Risk Officer.

Key Responsibilities

• Develop, implement, and maintain IT Infrastructure policies and procedures aligned with industry standards and regulatory requirements
• Conduct ongoing Quality Assurance activities to ensure adherence to established policies and identify areas for improvement
• Support internal and external audit engagements and collaborate with teams for timely remediation of audit findings

Required Qualifications

• Proven experience in technology risk management, internal controls, or IT audit roles
• Strong understanding of risk assessment methodologies and control frameworks
• Familiarity with regulations such as NYDFS, GLBA, and NIST CSF
• Bachelor's Degree from an accredited college or equivalent work experience with 3+ years in IT Compliance and Risk and/or Audit
• Experience supporting internal audits and SOX compliance initiatives