Description
Job Summary: The competency-based apprenticeship will measure the apprentice’s successful demonstration of acquired skills and knowledge, as verified by the program sponsor. Requirements include apprentices complete an on-the-job training component and complete a related technical instruction component as outlined within the approved Standards of the Apprenticeship. The apprentice will assist the team in the completion of audits, identification, reporting, and assessing of risk, tracking and monitoring of Plan of Action and Milestones (POA&Ms), drafting and updating SOPs & SSPs, and assigned governance tasks. This position will assist the Chief Information Security Officer and the GRC Team Lead in processing documentation, facilitation, remediation planning, risk management, and governance coordination to meet the audit, control, and compliance requirements. Additionally, they will be training others on security best practices and ensuring all security and policy training is updates and completed by all staff.
Viable candidates must be willing to work onsite at GSI's headquarters in Palm Harbor, Florida daily.
Key Responsibilities:
- Audit Support: Collaborate with internal and external audit and operational teams, assisting in providing documentation and evidence to demonstrate compliance and adherence to governance standards
- Risk Assessment: Conduct comprehensive risk assessments to help identify potential threats and vulnerabilities within the organization’s operations and platform
- Compliance Monitoring: Monitor and track regulatory changes under supervision, ensuring compliance with all relevant laws, standards, and industry Serve as the lead for one audit coordinating the gathering and submission of evidence/documentation to help achieve or maintain certification status for GSI
- Policy Development: Assist in developing, implementing, and revising corporate policies, plans, procedures, and standards to align with best practices and compliance Also assist in SSP creation and updates as changes happen to regulatory requirements
- Governance: Assist in helping GSI in optimizing the use of IT operations to support business
Work Experience / Knowledge:
- Basic knowledge of Industry Standards, g., ISO 17799/27001, FISMA/GovRAMP, NIST Publications, and other Industry Related Security Standards
- Ability to operate with multiple competing priorities in a fast-paced SaaS environment
- Tracking third-party security services, application vendors, and IT inventory
Qualifications / Certifications:
- Minimum high school graduate; General Education Development (GED)
- Two-year college degree in cyber security preferred
- Understanding of fundamental information security concepts and technology
- Ability to excel in a fast paced and rapidly changing environment
- Strong work ethic with attention to detail
- Excellent communication and interpersonal skills to work effectively with cross-functional teams and external stakeholders
- Detail-oriented with a commitment to maintaining the highest standards of integrity and ethics
- Strong organizational skills and the ability to prioritize and manage multiple tasks efficiently
- Adaptability and the capability to stay current with evolving regulations and industry trends
Special Requirements:
- Willing to work irregular hours as needed
- Willing to accept various projects and tasks as needed