Note: The job is a remote job and is open to candidates in USA. Avenue Code is a leading software consultancy focused on delivering end-to-end development solutions for digital transformation. They are seeking a GRC Consultant to execute controls assurance activities, support compliance efforts, and collaborate across teams to identify security risk mitigation needs.
Responsibilities
- Execute controls assurance activities leveraging existing control framework to identify technology risks, review existing control implementation, and support compliance efforts
- Support compliance evidence request review and collection to ensure control activity documentation meets compliance requirements
- Collaborate with teams across the organization to identify security risk mitigation needs
- Maintain compliance documentation, including audit evidence and controls
- User access reviews
- Interacting with the Internal Audit team
- Reviews performed by Michael and other team members
Skills
- 3 to 5 years working in a Governance, Risk, and Compliance (GRC), internal audit, external audit, or similar role
- Functional knowledge of identity and access security domains and information security industry standards and best practices
- Knowledge in at least one of the following compliance frameworks such as SOC2, ISO 27001, ITGC Controls, NIST CSF
- Strong project management skills
- Strong written and verbal communication skills
- GitHub / GitLab
- Access management or code review experience
- Python
- Okta
- Industry experience in Banking
- Industry experience in Technology
Company Overview