Job Title: IT Governance Risk and Compliance Analyst

Dept: Information Security

Position Location: 1000 St. Albans Dr.; Raleigh, NC 27609. Hybrid role, must live locally.

Your impact:

As Coastal's IT Governance, Risk, & Compliance (GRC) Analyst, you will coordinate Coastal's information security and IT governance activities, facilitate IT risk assessments and audits, partner with business units to assess third party risk and make recommendations, and assess compliance with internal security standards.

As a key contributor to the Coastal team, your responsibilities will be:

• Conducting risk and compliance assessments of internal controls and practices based on defined compliance criteria and risk assessment frameworks; and coordinating the collection of data and documentation to support audits and other assessments (30%).

• Coordinating governance processes including software approval, hardware approval, third party security reviews, and change management; and collecting associated security and GRC performance metrics (50%).

• Writing and revising technical documentation including information security standards based on requirements defined by management or senior staff; creating documentation based on risk and compliance findings and exceptions; and reporting on findings and performance metrics (10%).

Interested? Here are the qualifications we need to see on your resume:

Required experience:

• Three years of experience in information security or related field(s)
• Experience conducting risk or compliance assessments

Preferred experience:

• Three years of hands-on technical experience (e.g. cybersecurity analyst, network engineer, developer, system administrator)
• Experience with the technological aspects of a depository institution
• Experience with Governance Risk and Compliance (GRC) tool to conduct assessments is preferred

Education:

• Related bachelor's degree; computer science or information stems preferred. Three additional years of relevant experience may be considered in lieu of degree.
• Security certifications such as CISSP, CRISC, CGEIT, CGRC, CISM, CISA, GRCP also preferred.

Deadline for Application: All resumes must be received on or before 10/28/2024

Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.

Coastal Federal Credit Union is committed to providing reasonable accommodations to applicants who may have disabilities. If you need special assistance or an accommodation in applying for employment, please contact our HR department at jkedra@coastal24.com. Request for reasonable accommodation will be considered on a case by case basis.

"It's our duty to create a workplace and company culture where everyone feels heard and valued, and is appreciated for their unique backgrounds, experiences, and perspectives. At the end of the day, what truly matters is that every person who walks through our doors believes that they are an integral part of our team and can bring their best, true self to work each day. Building a culture of inclusivity means creating an environment where everyone thrives and succeeds together."

-Tyler Grodi, CEO

VEVRAA Federal Contractor

Equal Opportunity/Affirmative Action Employer

Minority/Female/Disability/Veterans