Fusion HCR is hiring!! GRC Analyst – Direct Hire in Las Vegas NV. We are looking for candidates who have a compliance, IT Audit and knowledge of Risk and Compliance for this exciting opportunity!
Location: Las Vegas, Nevada
Overview:
Fusion HCR is seeking a dynamic and motivated GRC (Governance, Risk, and Compliance) Analyst to join our esteemed team. This role will be pivotal in ensuring the integrity, security, and compliance of our IT systems and processes. The ideal candidate will possess a blend of technical expertise, auditing experience, and a strong understanding of regulatory requirements in the gaming and hospitality sector.
Key Responsibilities: Conduct regular audits of IT systems, processes, and controls to ensure compliance with industry standards, regulatory requirements, and internal policies. Collaborate with cross-functional teams to identify, assess, and mitigate risks associated with IT operations, data security, and regulatory compliance. Develop and maintain documentation related to IT controls, policies, procedures, and audit findings. Assist in the implementation and maintenance of GRC frameworks, including risk management, incident response, and compliance monitoring. Monitor and analyze security events using tools such as Splunk, identifying potential threats or vulnerabilities and coordinating appropriate responses. Provide support in the development and execution of IT security awareness and training programs for employees. Stay abreast of emerging technologies, industry trends, and regulatory changes to ensure compliance and enhance the effectiveness of IT controls. Qualifications: Bachelor's degree in Computer Science, Information Systems, or a related field. 2+ years of experience in IT audit, compliance, risk management, or a related field. Familiarity with regulatory frameworks such as PCI DSS, HIPAA, GDPR, and relevant gaming regulations (e.g., GCR). Proficiency in PowerShell or Python scripting for automation and data analysis is a plus. Experience working with Splunk or similar SIEM (Security Information and Event Management) tools for monitoring and analysis. Strong analytical skills with the ability to assess complex IT systems and identify areas of improvement. Excellent communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels. Relevant certifications such as CISA (Certified Information Systems Auditor), CISSP (Certified Information Systems Security Professional), or CRISC (Certified in Risk and Information Systems Control) are desirable but not required.