w2 only
* 8+ years of hands-on experience as Business Analyst
• Good understanding of IT systems, networks, databases, and security protocols.
• Knowledge of GRC (Governance, Risk and Compliance) systems, risk management tools and software (e.g. Archer).
• Professional certifications such as CISA , CRISC, CISSP are preferred.
• Expertise in Control Evaluation and Assessment: Evaluate existing IT controls against industry standard frameworks, including preventive, detective, and corrective controls, to ensure adequate coverage and that they are effective in mitigating risks.
• Worked on IT governance frameworks and risk management practices (e.g., FFIEC, ITIL, COBIT).
• Understanding of Compliance Monitoring: Ensure compliance and coverage with industry standard frameworks and Organization's internal policies, standards and procedures