Title: GRC Policy Analyst
Location: Hybrid Remote / Boston, MA
Duration: 12+ Months
Mainly remote but may require 1-2 days/week hybrid, particularly during beginning of engagement. Also requires an Onsite interview.
Responsibilities:
Oversee and manage NIST policy approvals and implementation at the MBTA
Manage NIST policies within the ERM platform
Coordinate with key stakeholders for non-NIST policies
Research and evaluate policies to ensure they are up-to-date with current NIST guidance
Stay aware of policy trends and new laws/guidelines from the Federal to state and local level
Identify and implement GRC security controls based on the NIST framework.
Manage and implement the cybersecurity awareness program including annual training, AUP acknowledgement tracking, and phishing training
Collaborate with the GRC IT Risk Analyst on various projects for the GRC Department.
...employees, whose mission is to improve the health and well-being of the unique communities we serve. Position qualifies for our Athletic Trainer Incentive Program: $10,000 paid over a three (3) year commitment period. Payment is spread over a 3-year period in six(6)...