Senior GRC Analyst I - ISO

Sensiba is always looking for top talent to add to our integrated team. We have an exciting opportunity for a Senior GRC Analyst I to join our GRC Team. If you're looking for an organization that offers an inclusive environment, uses business as a force for good, and supports you and your family with flexible work options and attractive benefits, take the first step toward joining the Sensiba team!

Named a Top 100 Accounting Firm and Top Workplace USA, we're recognized for exceptional employee engagement and dedication in helping our clients solve problems, navigate complexity, and build a foundation for sustainable growth.

In 2018, we became a certified B Corporation (B Corp ). The B Corp certification distinguishes companies that use the power of business to solve social and environmental problems. It helps us better assess how our core values align with our daily operations and identify where we can improve.

Summary:

The Senior GRC Analyst is responsible for ensuring client satisfaction and efficient execution of engagement plans, while being the coach and advisor to team members. This role will focus on business processes and IT control auditing (primarily ISO 27001/27701/42001) and assessment services with responsibilities that include evaluating, testing, and documenting key business processes, access controls, and change management controls for engagements The Senior Associate will build robust client relationships grounded in a deep understanding of their operations, challenges, and compliance needs. The role is pivotal in delivering top-notch services, centering on clients' business, IT, and security risk management.

Responsibilities:

• Lead and conduct detailed audits of clients' business processes and IT controls, ensuring compliance with industry standards and regulations.
• Observe, review, document, and test key business process transactions, access controls, change management controls, operational and organizational controls, and automated controls for engagements
• Review, document, evaluate and test application controls, particularly automated controls on a wide range of systems and software applications across a wide variety of client business processes
• Evaluate clients' business, IT, and security risks, identifying areas of concern and recommending appropriate control measures and process improvements to mitigate risks.
• Assess security policies and procedures, reviewing risk management / risk assessment documentation, and controls of our clients' business applications, networks, operating systems, and other components of their technology infrastructure
• Support internal and external security assessments of new and existing services and infrastructure including operational, regulatory, and contractual requirements
• Develop and nurture strong relationships with clients, gaining insight into their businesses, risks, and compliance

Qualifications:

• A bachelor's degree in cybersecurity, information technology, computer science, information assurance, or a related field.
• 3+ years of IT Audit experience or Audit experience.
• Experience leading ISO 27001/27701/42001 audits.
• Experience with controls reviews along with recommending, designing and advising on applicable IT.
• Experience teaching, training, mentoring other staff members is preferred.
• ISO Lead Auditor Certification preferred.

There are many reasons to join the Sensiba team: generous benefits, competitive compensation, professional advancement opportunities, and above all - our people. If you're looking for an environment that offers you growth, success, and professionalism without compromising your family, passions, and life outside of work, apply today!