Boscov's Department Store

ABOUT WCG: WCG’s clinical solutions are built on a foundation of best-in-class clinical services companies. We deliver transformational solutions that stimulate growth, foster compliance, and maximize efficiency for those performing clinical trials. WCG is proud to serve individuals on the frontlines of science and medicine, and the organizations striving to develop new products and therapies to improve the quality of human health. It is our role to empower them to accelerate advancement, while ensuring the risks of progress never outweigh the value of human life.

WHY WE LOVE WCG: At WCG, our employees are our most valuable asset and as with all our assets, we invest in them with an eye toward future success. We provide each eligible employee with a comprehensive set of benefits designed to protect their personal and financial health and to help them make the most of their future.

The expected pay range for this position is $20.60 to $31.25. This pay range may vary based on the candidate's qualifications, experience, skills, education, and geographic location.

The Junior Analyst, Information Security will assist and support daily activities under the guidance of the Director, Information Security for Governance, Risk and Compliance (GRC). Responsibilities will include, but not limited to, assisting in the facilitation of security risk assessments, managing and tracking issues and exceptions, developing risk metrics/reports, and advancing the GRC tool. The role involves collaborating with Business units, Technology Solutions teams, QA, Records Management, HR, Legal, and Contracts Teams to fulfill regulatory and customer requirements as well as cybersecurity controls. Duties also include supporting the maintenance of the ISMS program in alignment with industry standards like ISO 27001 and NIST 800-53 and helping to revise policies and standard operating procedures (SOPs).

ESSENTIAL DUTIES/RESPONSIBILITIES: To perform this job successfully, an individual must be able to perform each essential duty and responsibility satisfactorily. The accountabilities listed below are representative of the knowledge, skills, and/or ability required.

• Assist with performing oversight of the development, implementation, and evaluation of information security practices to ensure continuous improvements.
• Assist with generating and maintaining KPIs to demonstrate compliance and effectiveness of the security program.
• Executing security objectives for the WCG’s Information Security Management System (ISMS).
• Participate in vendor and supplier assessments and evaluations.
• Support the review and completion of the customer security questionnaires/assessments.
• Support the maintenance of the WCG’s risk registries, risk treatment plans and handling issues and exceptions process.
• Assist in the ISMS document lifecycle management.
• Assist in promoting cybersecurity hygiene among employees through awareness and training activities.
• Attendance and punctuality are essential functions of the position.
• Other duties as assigned by supervisor. These may, on occasion, be unrelated to the position described here.

EDUCATION REQUIREMENTS:

• Bachelor’s degree, preferably in Information Technology Management, Risk Management, or Information Sciences/Technology Analytics with a concentration in Cybersecurity or other related field of study.

SUPERVISORY RESPONSIBILITIES: None

TRAVEL REQUIREMENTS: 0% – 5%