In this role, you will be responsible for supporting Information Security Governance, Risk Management, and Compliance initiatives and projects. Responsible for maintaining the GRC application including configuration, updating and testing.

Assisting GRMC MSSP with resolving any potential performance issues, and upgrades, and assist in the other GRC areas of Governance and Compliance. Support projects, initiatives and programs of the IS Governance, Risk Management, and Compliance team as requested. Work with GRC tool Vendor to coordinate the delivery of the GRC tool and ensure the application is available for internal users and has the expected functionality.

Track activity, changes in progress, and issues noted and communicate status to the GRMC team as appropriate. Act as primary support for TruOps application, administration, maintenance, and configuration. Troubleshoot and resolve system performance issues.

Lead and coordinate application upgrades, software updates/patches, and maintenance items. Liaison with the vendor, coordinate with internal personnel, test functionality, update training material and documentation, communicate changes to users, and facilitate discussions. Create and maintain workflows for users, based on process flows defined by the business unit.

Maintain roles and access and control library. Assist with the development, configuration, implementation and maintenance of the IS Risk Register. Manage the request for platform enhancement and issues with TruOps.

Maintain awareness of changes in security risks, security measures, and computer systems assessing new requirements for current and emerging compliance regulations. Communicate technical and business problems clearly, and timely in a concise manner to a variety of audiences both internal and external. Assist in evaluating the effectiveness of controls in place to mitigate threats and communicate remaining residual risk.

Provide recommendations to leadership on program effectiveness and enhancements. Report and escalate information security risks appropriately and timely. Knowledge of Governance, Risk & Compliance fundamentals such as RSA, MetricStream, IBM or TruOps Problem-solving skills, with the ability to manage complex local security requirements Written and verbal customer service communication skills, and proven ability to translate security and risk to all levels of the business Ability to understand legacy and progressive technology including cloud computing and security controls along with respective risk Self-motivated and well-organized, with the vision to position controls in anticipation of threats Ability to act with integrity, being inquisitive and adaptable Ability to communicate in both technical and business terms, clearly and concisely Time management, multitasking, task planning and prioritization skills Ability to communicate and gather requirements from large number of project stakeholders Knowledge of Word, PowerPoint, Microsoft Excel including data macros and the ability to convert data macros to VBA code modules Knowledge of Microsoft Access application (code modules, forms, queries, reports, tables, references, settings) Knowledge of project management methodology and analytical troubleshooting and support skills Ability to multitask in a fast-paced environment and attention to details Knowledge of regulatory requirements and laws, including but not limited to FFIEC, NCUA, PCI, SOX, HIPAA, Privacy and GLBA.

and ISO 27001/2, ITIL or NIST Knowledge of Governance, Risk & Compliance fundamentals Education Minimum 4 Year/Bachelors Degree Computer Science MIS or Related field Years of Experience Minimum 7 years - IT Governance, Risk Management, or Compliance (GRC) as a practitioner or related Preferred 2 years - IT, Risk Management, system support analyst In Lieu of Education: 10 years - Technical expertise, system administrator, GRC application Administrative, IT Governance, Risk Management, or Compliance (GRC) and IT, Risk Management, system support analyst Certifications: Preferred: Compliance, Risk Management, or Governance certifications: CRISC, CGEIT, CISM or CISA As a thank you for joining our team, you'll benefit from: Competitive medical, dental, and free vision benefits Paid parental leave Competitive compensation plan Gym memberships discounts Generous PTO and banking holidays off Tuition reimbursement 401k with immediate employer match and vesting.