REMOTE - Information Security GRC Analyst III - R12694

Job SummaryThe Information Security GRC Analyst III managed day to day, short and long term information security risks and ensures activities are within risk tolerance and in compliance with approved risk management policies, procedures and limits.Essential FunctionsMeasure, monitor, and report on information security risks Review and report on vendor/third party risk to support vendor risk management activitiesEngage staff and/or vendors to develop information security risk mitigation plans to address risks identified in Vendor risk reviewsMonitor and report on information security risk mitigation plans to ensure timely executionEngage employees in the management of information security risk and ensure they are aware of their accountabilities with regard to information security risk managementRegularly assess and report to management any exceptions to information risk management policies, procedures and limitsEngage with the Enterprise Risk Management office to ensure information risk management policies, procedures and limits are aligned with Enterprise Risk Management policies and guidanceContribute and provide input to the development of operational department goalsActs as technical expert in functional domainRecommends technical advancements to improve CareSource customer and partner experiencesPerform any other job related instructions as requestedEducation And ExperienceBachelor Degree or equivalent years of relevant work experience requiredMinimum of seven (7) years of relevant work experience is requiredCompetencies, Knowledge And SkillsAbility to effectively prioritize and execute tasks while working both independently and in a team-oriented, collaborative environmentStrong interpersonal skills including excellent written and verbal communication skills; listening and critical thinking; presentation skills, facilitation skillsAbility to establish effective working relationships with stakeholders at all different levelsFlexibility during organizational and/or business changesAbility to manage multiple projects while demonstrating a sense of urgencyEffective problem-solving skills with attention to detailWorking technical knowledge/experience of the following:IT AuditApplication, server, and network securityMonitoring security events and supporting incident response activitiesSarbanes-Oxley (SOX) complianceMicrosoft OfficeAccess Management/Authentication and AuthorizationScurity MonitoringData EnryptionComputer NetworkingSecurity Internet protocols (SSL, IPSEC, TCP/IP)Windows Operating SystemProject ManagementLicensure And CertificationCertified in Risk and Information System Control (CRISC) or System Security Certified Practitioner (SSCP) preferredWorking ConditionsGeneral office environment; may be required to sit or stand for extended periods of timeCompensation Range$94,100.00 - $164,800.00 CareSource takes into consideration a combination of a candidate’s education, training, and experience as well as the position’s scope and complexity, the discretion and latitude required for the role, and other external and internal data when establishing a salary level. In addition to base compensation, you may qualify for a bonus tied to company and individual performance. We are highly invested in every employee’s total well-being and offer a substantial and comprehensive total rewards package.Compensation TypeSalaryCompetencies Fostering a Collaborative Workplace Culture - Cultivate Partnerships - Develop Self and Others - Drive Execution - Influence Others - Pursue Personal Excellence - Understand the BusinessThis job description is not all inclusive. CareSource reserves the right to amend this job description at any time. CareSource is an Equal Opportunity Employer. We are dedicated to fostering an environment of belonging that welcomes and supports individuals of all backgrounds.