- Vanguard (Malvern, PA)
- Global Risk and Security (GR&S) at Vanguard enables business strategy, protects client and Vanguard interests (eg, assets and data), and stewards a strong risk ... and crew drive faster, stronger, risk-informed decisions. Within GR&S, the Enterprise Security and Fraud (ES&F) sub-division is responsible for the global protection… more
- Talen Energy (Allentown, PA)
- …is seeking a skilled and proactive Cybersecurity GRC (Governance, Risk, and Compliance) Analyst to join our dynamic cybersecurity team. The GRC Analyst will ... role in identifying, managing, and mitigating risks related to information security and ensuring compliance with industry standards, regulations, and internal… more
- Highmark Health (Pittsburgh, PA)
- …assessment activities of Highmark Health across a broad range of frameworks including NIST , HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, etc. The incumbent will ... assessment activities according to the appropriate framework, including but not limited to NIST , HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, in order to identify,… more
- Highmark Health (Pittsburgh, PA)
- …assessment activities of Highmark Health across a broad range of frameworks including NIST , HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, etc. The incumbent will ... assessment activities according to the appropriate framework, including but not limited to NIST , HITRUST, PCI, HIPAA, SOC, MAR, CMS, JCAHO, in order to identify,… more
- Coinbase (Harrisburg, PA)
- …such as COBIT, NIST , ISO 27001 * Hands on experience in security engineering, implementing security frameworks, or designing and managing technical controls ... making us a top tier target on the internet. Security is core to our mission and has been...and other external stakeholders. Coinbase is looking for an Analyst , Tech Controls to support the second line of… more
- American Red Cross (PA)
- …Minimum 4 years of experience in IT audit, compliance, or Information Security .** Strong understanding of control frameworks: NIST , ISO, COBIT, FedRAMP, ... TO KNOW ABOUT THE JOB:** **As an IT GRC Analyst , you will help mature and maintain the organization's...reviewing, tracking and supporting policies and controls aligned with NIST 800-53/171, COBIT, ISO 27001, and SOC 2 frameworks.… more
- Vanguard (Wayne, PA)
- As a Technical Risk Assurance Analyst , Specialist, within Global Technology Operations (GTO) you will serve as a strategic consultant addressing governance, risk, ... like Archer, and understanding of standards such as ISO 27001 and NIST . Relevant certifications like CISA, CISSP, or CRISC are highly desirable. Responsibilities:… more
- Wabtec Corporation (Pittsburgh, PA)
- …us. **Who will you be working with?** Join Enterprise Information Security (EIS) to drive cybersecurity excellence leveraging intelligence, strategic partnerships, ... and key Information Technology stakeholders to advance our information security capabilities. **How will you make a difference?** As...is looking for a **Senior Cybersecurity** **Risk & Controls Analyst ** . This role reports to the ISA Sr… more
- Leidos (Chambersburg, PA)
- …authorized IT systems (re-authorization and new systems) throughout their lifecycle for security posture impact. These positions can be based out of any of ... + Analyze proposed or actual system changes to determine security impact, and assess security controls and...BURP, and HBSS + Understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53,… more
- Coinbase (Harrisburg, PA)
- …is expected and fully supported. Coinbase is looking for a creative and analytical Senior Analyst of Technology Risk & Controls. You will serve as a member of the ... Controls team and support the implementation and maturity of our technology and security controls lifecycle program. This role is crucial in maturing our continuous… more