Risk Analyst

Marco is a one-stop shop for all things business tech. Our employees are “movers and shakers” and our company is always striving to do what’s right. Does this sound like a culture you want to be a part of? We’re hiring a new team member to help take Marco’s technology further – working full-time, Monday - Friday, 8am-5pm. More about us. We do it all – from copy and print solutions to IT and managed services. We are an organization led by salespeople with 650+ engineers ready to fix any and all issues. We have offices in 12 states and service nationally. Join our growing team. You won’t regret it.As a Risk Analyst, you will support the risk management program and related processes across all aspects for the business. The Risk Analyst is responsible for assisting the CISO and Risk Manager with the day-to-day tasks of the risk management program, including compliance monitoring reviews and other key initiatives.Responsibilities include coordinating and maintaining vendor risk management, internal and external client information requests and conducting periodic audits of internal controls to ensure compliance.This is a hybrid role which includes working Tuesday through Thursday in a Marco office, with flexibility to work remotely on Monday and Friday.

ESSENTIAL FUNCTIONS:

• Interface with customers to prepare information request responses regarding our policies, procedures, compliance standards, environment, etc.
• Work with vendor owners to risk rate vendors using the defined vendor management methodology.
• Work with vendors to ensure partner agreements, including business requirements and Information Security requirements, are met, and followed and vendor due diligence information is completed.
• Understand and maintain proficiency with NIST Cybersecurity Framework (CSF) and Service Organization Controls (SOC) 2 for Service Organizations: Trust Services Criteria including updates, organizational impacts, and practical use.
• Assist in monitoring the risk management process and related controls.
• Assist with internal control audits for continuous monitoring. Prepare supporting workpapers and reporting. Track progress in responses, remediation, and repeat issues. 
• Compile data and prepare reports for management, security leadership team, and security team.
• Participate and assist with administration of security awareness programs and educational efforts.
• Accurately maintain and comply with documentation, communication, time entry, and administrative procedures in a timely manner.
• Act in accordance with Marco policies and procedures as set forth in the employee handbook.
• Attend required company and departmental meetings.
• Perform other related duties as assigned.

EDUCATION AND EXPERIENCE:

• Bachelor’s degree in accounting, business, economics, finance or technology and three years’ experience in information security, risk management, audit, or compliance; or an equivalent combination of education and experience.

LICENSES AND CERTIFICATIONS:

• Current high-level industry recognized certifications including one of the following: CRISC, CISA, CPA, banking compliance or similar preferred.
• Successful completion of an employment background check including criminal and financial history.
• Valid Driver’s License, proof of personal insurance and an acceptable driving record.

REQUIRED SKILLS:

• Knowledge of basic cybersecurity principles.
• Ability to apply an organization's goals and objectives to develop and maintain architecture.
• Proficiency with business collaboration tools such as Office applications.
• Demonstrates attention to detail.
• Effective organizational and time/task management skills.
• Ability to prioritize responsibilities and to operate with changing priorities; Strong ability to exercise independent judgment.
• Self-starter with the ability to perform with little or no direct supervision.
• Excellent communication skills in working with technical and non-technical people and the ability to develop and maintain collaborative relations among all levels of an organization.
• Treats people with respect; Works with integrity and ethically; Upholds organizational values.
• Follows policies and procedures; Completes administrative tasks correctly and on time; Supports organization's goals and values.
• Demonstrates accuracy and thoroughness; Looks for ways to improve and promote quality; Applies feedback to improve performance; Monitors own work to ensure quality.

Benefits: We’re not just competitive when it comes to business tech – we’re also pretty proud of what we offer our employees. Our benefits include medical, dental, and vision insurance. We also have paid holidays and vacation, 401k with generous company match, flexible spending accounts, employee purchase program, employer-paid life insurance, voluntary-term life insurance, short and long-term disability, critical illness and accident benefits, and pet insurance. Yes, we care about your furry family too.*all benefits are dependent on employment status    To apply (and to learn more about what makes us great), visit: www.marconet.com/careers EEO/AA