Information Security Risk Officer

Job Summary

A company is looking for an Information Security Risk Officer.

Key Responsibilities

• Develop, implement, and maintain IT Infrastructure policies and procedures in alignment with best practices and regulatory requirements
• Perform ongoing Quality Assurance activities to ensure adherence and effectiveness of established policies, procedures, and controls
• Collaborate with IT Infrastructure leadership to support technology risk governance and assist with internal and external audit engagements

Required Qualifications

• Proven experience in technology risk management, internal controls, or IT audit roles
• Strong understanding of risk assessment methodologies and control frameworks
• Familiarity with regulations such as NYDFS, GLBA, and NIST CSF
• Experience supporting internal audits and SOX compliance initiatives
• Bachelor's Degree from an accredited college or equivalent work experience, with 3+ years in IT Compliance and Risk and/or Audit