Zs Associates
Overview
ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it, we transform ideas into impact by bringing together data, science, technology and human ingenuity to deliver better outcomes for all. Here you’ll work side-by-side with a powerful collective of thinkers and experts shaping life-changing solutions for patients, caregivers and consumers, worldwide. ZSers drive impact by bringing a client-first mentality to each engagement. We partner collaboratively with our clients to develop custom solutions and technology products that create value and deliver company results across critical areas of their business. Bring your curiosity for learning, bold ideas, courage and passion to drive life-changing impact to ZS.
Senior Governance & Risk Analyst ZS IT Support teams are aligned with the company’s business strategy and operating model and aims to provide its 4000 plus employees and their clients the right tools and information for high performance. The IT organization focuses on providing products and services to ZS to ensure successful business outcomes. This involves providing a scalable, sustainable and reliable IT infrastructure, customized applications, messaging and collaboration products, Business Intelligence and Database administration support along with a reliable 24x7 uninterrupted high-quality technology support services.
What You’ll Do We are seeking applicants for the position of Senior Analyst - Governance and Risk team to join our US IT Governance, Risk and Compliance team. The position will support various management-directed IT risk governance initiatives which include the following responsibilities:
Perform risk assessments:
Conduct vendor due diligence assessments to evaluate the security controls and risk posture of third-party vendors.
Conduct process and project security risk assessments to identify potential vulnerabilities and recommend appropriate controls.
Analyze and evaluate risks associated with IT systems, applications, and infrastructure.
Maintain risk register:
Develop and maintain a comprehensive risk register, documenting identified risks, their likelihood, potential impact, and recommended mitigation strategies.
Regularly review and update the risk register to reflect changes in the risk landscape and organizational priorities.
Communicate risk findings and recommendations to relevant stakeholders.
Compliance and policy adherence:
Stay up-to-date with relevant regulatory requirements and industry best practices related to IT risk management.
Assist in the development and implementation of policies, procedures, and controls to ensure compliance with applicable standards and regulations.
Monitor and assess compliance with established risk management policies and procedures.
Risk mitigation and control implementation:
Collaborate with cross-functional teams to develop and implement risk mitigation strategies and controls.
Provide guidance and support to project teams to ensure that security controls are effectively implemented.
Monitor the effectiveness of implemented controls and recommend enhancements as needed.
Reporting and communication:
Prepare and present reports on risk assessment findings, including risk profiles, potential impacts, and recommended risk mitigation strategies, to stakeholders and senior management.
Communicate complex risk concepts and technical information to non-technical stakeholders in a clear and concise manner.
What You’ll Bring
Bachelor's degree in Computer Science, Information Systems, or a related field (master's degree is a plus).
Minimum of 5-7 years of experience in IT risk management, IT governance or related field.
Strong understanding and knowledge of IT risk assessment methodologies, frameworks, industry best practices and regulatory requirements (GDPR, HIPAA, PCI DSS).
Strong experience with vendor risk management and security risk assessments.
High proficiency in using risk assessment tools and technologies.
Excellent analytical and problem-solving skills.
Strong written and verbal communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical audiences.
Strong organizational and time management skills, with the ability to manage multiple priorities and deadlines.
Relevant certifications such as CRISC, CISSP, or CISM are preferred. ISO 27001 knowledge is a plus.
Professional appearance and demeanor, with ability to exercise good judgment and discretion.
Proven ability to work creatively and analytically in a problem-solving environment.
Perks & Benefits ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empower you to thrive as an individual and global team member.
We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections.
Travel Travel is a requirement at ZS for client-facing ZSers; business needs of your project and client are the priority. While some projects may be local, all client-facing ZSers should be prepared to travel as needed. Travel provides opportunities to strengthen client relationships, gain diverse experiences, and enhance professional growth by working in different environments and cultures.
Considering applying? At ZS, we honor the visible and invisible elements of our identities, personal experiences, and belief systems—the ones that comprise us as individuals, shape who we are, and make us unique. We believe your personal interests, identities, and desire to learn are integral to your success here. We are committed to building a team that reflects a broad variety of backgrounds, perspectives, and experiences. Learn more about our inclusion and belonging efforts and the networks ZS supports to assist our ZSers in cultivating community spaces and obtaining the resources they need to thrive.
If you’re eager to grow, contribute, and bring your unique self to our work, we encourage you to apply.
ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities without regard to any class protected by applicable law.
To complete your application: Candidates must possess or be able to obtain work authorization for their intended country of employment. An online application, including a full set of transcripts (official or unofficial), is required to be considered. NO AGENCY CALLS, PLEASE. Find Out More At: www.zs.com
#J-18808-Ljbffr
Senior Governance & Risk Analyst ZS IT Support teams are aligned with the company’s business strategy and operating model and aims to provide its 4000 plus employees and their clients the right tools and information for high performance. The IT organization focuses on providing products and services to ZS to ensure successful business outcomes. This involves providing a scalable, sustainable and reliable IT infrastructure, customized applications, messaging and collaboration products, Business Intelligence and Database administration support along with a reliable 24x7 uninterrupted high-quality technology support services.
What You’ll Do We are seeking applicants for the position of Senior Analyst - Governance and Risk team to join our US IT Governance, Risk and Compliance team. The position will support various management-directed IT risk governance initiatives which include the following responsibilities:
Perform risk assessments:
Conduct vendor due diligence assessments to evaluate the security controls and risk posture of third-party vendors.
Conduct process and project security risk assessments to identify potential vulnerabilities and recommend appropriate controls.
Analyze and evaluate risks associated with IT systems, applications, and infrastructure.
Maintain risk register:
Develop and maintain a comprehensive risk register, documenting identified risks, their likelihood, potential impact, and recommended mitigation strategies.
Regularly review and update the risk register to reflect changes in the risk landscape and organizational priorities.
Communicate risk findings and recommendations to relevant stakeholders.
Compliance and policy adherence:
Stay up-to-date with relevant regulatory requirements and industry best practices related to IT risk management.
Assist in the development and implementation of policies, procedures, and controls to ensure compliance with applicable standards and regulations.
Monitor and assess compliance with established risk management policies and procedures.
Risk mitigation and control implementation:
Collaborate with cross-functional teams to develop and implement risk mitigation strategies and controls.
Provide guidance and support to project teams to ensure that security controls are effectively implemented.
Monitor the effectiveness of implemented controls and recommend enhancements as needed.
Reporting and communication:
Prepare and present reports on risk assessment findings, including risk profiles, potential impacts, and recommended risk mitigation strategies, to stakeholders and senior management.
Communicate complex risk concepts and technical information to non-technical stakeholders in a clear and concise manner.
What You’ll Bring
Bachelor's degree in Computer Science, Information Systems, or a related field (master's degree is a plus).
Minimum of 5-7 years of experience in IT risk management, IT governance or related field.
Strong understanding and knowledge of IT risk assessment methodologies, frameworks, industry best practices and regulatory requirements (GDPR, HIPAA, PCI DSS).
Strong experience with vendor risk management and security risk assessments.
High proficiency in using risk assessment tools and technologies.
Excellent analytical and problem-solving skills.
Strong written and verbal communication skills, with the ability to effectively communicate technical concepts to both technical and non-technical audiences.
Strong organizational and time management skills, with the ability to manage multiple priorities and deadlines.
Relevant certifications such as CRISC, CISSP, or CISM are preferred. ISO 27001 knowledge is a plus.
Professional appearance and demeanor, with ability to exercise good judgment and discretion.
Proven ability to work creatively and analytically in a problem-solving environment.
Perks & Benefits ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empower you to thrive as an individual and global team member.
We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections.
Travel Travel is a requirement at ZS for client-facing ZSers; business needs of your project and client are the priority. While some projects may be local, all client-facing ZSers should be prepared to travel as needed. Travel provides opportunities to strengthen client relationships, gain diverse experiences, and enhance professional growth by working in different environments and cultures.
Considering applying? At ZS, we honor the visible and invisible elements of our identities, personal experiences, and belief systems—the ones that comprise us as individuals, shape who we are, and make us unique. We believe your personal interests, identities, and desire to learn are integral to your success here. We are committed to building a team that reflects a broad variety of backgrounds, perspectives, and experiences. Learn more about our inclusion and belonging efforts and the networks ZS supports to assist our ZSers in cultivating community spaces and obtaining the resources they need to thrive.
If you’re eager to grow, contribute, and bring your unique self to our work, we encourage you to apply.
ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities without regard to any class protected by applicable law.
To complete your application: Candidates must possess or be able to obtain work authorization for their intended country of employment. An online application, including a full set of transcripts (official or unofficial), is required to be considered. NO AGENCY CALLS, PLEASE. Find Out More At: www.zs.com
#J-18808-Ljbffr