Website Candid8
Role: Onspring grc Consultant (Only USC)
Location: Remote
Duration: Long Term
Key Responsibilities:
Lead the design, implementation, and customization of Onspring GRC solutions, specifically tailored to meet cybersecurity needs and compliance requirements.
Collaborate with clients to understand their GRC processes and cybersecurity needs, then translate them into Onspring workflows, reporting, and dashboards.
Assist in the integration of Onspring with other cybersecurity and IT systems, including risk management tools, compliance databases, and audit solutions.
Configure Onspring’s Governance, Risk, and Compliance modules to ensure alignment with industry standards, such as NIST, ISO 27001, GDPR, HIPAA, and other cybersecurity frameworks.
Conduct assessments and analysis of the client’s cybersecurity risk posture, identifying areas for improvement in compliance, risk management, and governance.
Perform troubleshooting and system upgrades to ensure the ongoing functionality of Onspring GRC tools.
Develop and maintain comprehensive documentation for Onspring GRC configurations, processes, and procedures.
Stay up to date on emerging cybersecurity trends, regulatory changes, and best practices to continuously improve Onspring implementations.
Qualifications: Technical Skills & Experience:
Proficiency with Onspring GRC solutions, including configuration, integration, and customization.
In-depth knowledge of cybersecurity frameworks (NIST, ISO 27001, SOC 2, HIPAA, GDPR, PCI DSS, etc.) and regulatory compliance requirements.
Experience with risk management processes, including risk assessments, mitigation plans, and monitoring.
Strong understanding of security controls, governance, risk management, and compliance processes in the context of cybersecurity.
Familiarity with various security technologies and tools (e.g., SIEM, firewalls, vulnerability management, identity management systems)
Education and Certifications:
Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or a related field.
Industry certifications such as CISM, CISA, CISSP, CRISC, or other cybersecurity- related certifications are highly preferred.
Onspring GRC certifications or experience with similar tools (e.g., MetricStream, RSA Archer) would be a plus
To apply for this job email your details to sam.m@candid8.us