GRC Specialist - Diverse Lynx

Job Description: GRC Specialist

Onsite/Hybrid - Atlanta, GA

Job Description/ Responsibilities

" Collaborate with internal and external auditors and exam teams over internal controls, risks, documentation, and testing engagements while supporting stakeholders

" Evaluate, test, and document security solutions and controls, and work closely with other security team members to remediate risk

" Work closely with business and technology stakeholders to identify, document, and implement processes to address areas of key risks

" Participate and assist with the implementation of new systems and processes to ensure continued business process improvement, operational efficiency, and industry compliance

" Support SOX testing including coordinating with functional management personnel, internal stakeholders, and outside consultants

" Support Service Organization Control (SOC 2, Type 2) program through evidence gathering, testing, and coordination with auditors and stakeholders.

" Work with IT stakeholders on the implementation of new systems and software solutions

" Conduct Third Party Risk Assessments before onboarding and annual reviews for critical vendors to address risks and comply with Third Party Risk Management (TPRM) best practices

" Help to develop risk assessment framework to identify, analyze and track cybersecurity risk exposures and remediation plans

" Develop and maintain IT policies, standards, and procedures including IT standard operating procedures, disaster recovery plan, and business continuity plan

" Help support the Findings Program by clearly articulating audit finding remediation deadlines to control owners, document remediation plans and execution plans.