Cybersecurity Governance Analyst-REMOTE

Why CCI? CCI Systems, Inc. is an Employee-Owned solution provider specializing in telecommunications, comprehensive network assessments, industry-leading engineering, drafting and design services, and 24/7 support services. Come join our team of engineers and experts that guide our customers toward the right choices to future-proof their network for years to come. Our outstanding team-based work culture and environment has allowed us to grow, develop, and retain long-term employees. We value our employee’s hard work and determination and REWARD results all while having fun!

Our mission is to make life better by connecting people through innovative communication systems.

We are seeking a Cybersecurity Governance Analyst to establish and maintain a framework to provide assurance that information security strategies are aligned with and support business objectives by drafting security documentation with stakeholders, identify potential risks, assess the security of the systems, and assist with gap remediation.

Responsibilities

• Develop documentation related to governance in a concise, comprehensive, professional business language, documents include policy, procedures, process flow diagrams, user guides, standards, and Security PSAs.
• Maintain a governance document management lifecycle process.
• Conduct and facilitate security assessments to ensure alignment with governance policy.
• Report status and accountability of control gaps and facilitate remediation.
• Create and communicate governance and gap remediation plans and reporting to leadership.
• Conduct Security Awareness Training Program, including phish testing, monthly reporting, audits, and support.
• Conduct Cybersecurity Workforce (CWF) program, including reporting, audits, and support.
• Facilitate and continuously improve Enterprise Architecture program.
• Facilitate Risk Register documentation, process, and reporting.
• Facilitate external audits, includes making assignments, collecting evidence and progress checks.
• Develop and maintain a strong rapport with Subject Matter Experts (SME), business process owners, and Enterprise Architecture (EA) team.
• Collaborate with various departments and stakeholders to ensure compliance with security policy and standards.
• Establish, document, communicate and report team KPIs.
• Build on your personal knowledge base through continued education and training which may lead a position/industry specific certification.
• Ensure confidentiality of company information.
• Perform other duties as assigned by management.

Qualifications

• Bachelor’s Degree in Information Technology, Information Security and Assurance, Audit, or other Cybersecurity degree is required.
• 1 to 3 years working as a cybersecurity governance analyst or similar security role is required.
• Experience with NIST adoption and Governance activities preferred.
• Familiarity with combining multiple compliance frameworks (e.g., NIST, SOC2, ISO 27000) is preferred.
• CISA – Certified Information Systems Auditor, CISM – Certified Information Security Manager, Cybersecurity Audit Certificate, or other relevant cybersecurity certification is preferred.
• Strong understanding of Microsoft office tools and various web-based applications.
• Experience with Visio or other mapping tools.
• Experience in executing and maintaining a corporate governance and audit program.
• Excellent interpersonal and communication skills.
• Strong business writing skills for policy, standards, and procedures.
• Strong understanding of security governance, compliance, and risk management principles.
• Strong understanding of IT and networking concepts.
• Familiar with agile development methodologies.
• Familiar with business process definition, documentation, and continuous improvement.
• Ability to clearly articulate, present findings, recommendations, and associated risk.
• Ability to work under pressure in a fast-paced environment.
• Strong attention to detail with an analytical mind and critical thinking skills.
• The ability to embrace corporate values, understand the company mission, and exemplify CCI leadership behaviors.

Shift is full-time Monday – Friday between the hours of 8:00 am and 5:00 pm CST. Must be willing to work outside those normal hours as required.