Information Security Analyst - SOX Testing

<p><p><b>Expertise in ITGC & SOX :</b></p><p><br/></p><p>- Strong knowledge of IT General Controls (ITGC) and practical experience in ensuring compliance with SOX frameworks.<br/><br/>- Hands-on ability to assess, design, and monitor IT controls related to access management, change management, and IT operations.<br/><br/><b>Information Security Operations (GRC) :</b></p><p><br/></p><p>- Proven track record in Governance, Risk, and Compliance (GRC) functions within information security.<br/><br/>- Skilled in risk assessments, control testing, policy enforcement, and regulatory compliance (ISO, NIST, GDPR, etc.).<br/><br/><b>Certifications & Standards :</b><br/><br/>- Certified ISO/IEC 27001 : 2022 Lead Auditor, with the capability to lead internal/external ISMS audits and drive continuous improvement.<br/><br/>- Familiar with ISO 27002, ISO 27005, and other supporting standards.<br/><br/><b>Collaboration & Stakeholder Engagement :</b></p><p><br/></p><p>- Strong interpersonal skills to work seamlessly with audit, compliance, business, and technical teams.<br/><br/>- Ability to translate regulatory and security requirements into actionable, business-friendly controls.<br/><br/><b>Additional Strengths (Good-to-Have) : </b></p><p><br/></p><p>- Exposure to other frameworks such as COBIT, PCI-DSS, or HIPAA.<br/><br/>- Strong analytical, reporting, and communication skills.<br/><br/>- Experience in security awareness programs and control remediation.</p><br/></p> (ref:hirist.tech)