DESCRIPTION AND REQUIREMENTS

ABOUT WCG: WCG’s clinical solutions are built on a foundation of best-in-class clinical services companies. We deliver transformational solutions that stimulate growth, foster compliance, and maximize efficiency for those performing clinical trials. WCG is proud to serve individuals on the frontlines of science and medicine, and the organizations striving to develop new products and therapies to improve the quality of human health. It is our role to empower them to accelerate advancement, while ensuring the risks of progress never outweigh the value of human life.

WHY WE LOVE WCG: At WCG, our employees are our most valuable asset and as with all our assets, we invest in them with an eye toward future success. We provide each eligible employee with a comprehensive set of benefits designed to protect their personal and financial health and to help them make the most of their future.

• Comprehensive Benefits package - Health, Dental, Vision, Life Disability, 401k with match, and flexible spending accounts
• Employee Assistance Programs and additional work/life resources
• Referral Bonuses and Tuition Reimbursement
• Paid time off including holidays, vacation, and sick time
• Opportunities for career development with on-the-job training, certification assistance and continuing education reimbursement

The expected pay range for this position is $20.60 to $31.25. This pay range may vary based on the candidate’s qualifications, experience, skills, education, and geographic location.

JOB SUMMARY:

The Junior Analyst, Information Security will assist and support daily activities under the guidance of the Director, Information Security for Governance, Risk and Compliance (GRC). Responsibilities will include, but not limited to, assisting in the facilitation of security risk assessments, managing and tracking issues and exceptions, developing risk metrics/reports, and advancing the GRC tool. The role involves collaborating with Business units, Technology Solutions teams, QA, Records Management, HR, Legal, and Contracts Teams to fulfill regulatory and customer requirements as well as cybersecurity controls. Duties also include supporting the maintenance of the ISMS program in alignment with industry standards like ISO 27001 and NIST 800-53 and helping to revise policies and standard operating procedures (SOPs).

ESSENTIAL DUTIES/RESPONSIBILITIES: To perform this job successfully, an individual must be able to perform each essential duty and responsibility satisfactorily. The accountabilities listed below are representative of the knowledge, skills, and/or ability required.

• Assist with performing oversight of the development, implementation, and evaluation of information security practices to ensure continuous improvements.
• Assist with generating and maintaining KPIs to demonstrate compliance and effectiveness of the security program.
• Executing security objectives for the WCG’s Information Security Management System (ISMS).
• Participate in vendor and supplier assessments and evaluations.
• Support the review and completion of the customer security questionnaires/assessments.
• Support the maintenance of the WCG’s risk registries, risk treatment plans and handling issues and exceptions process.
• Assist in the ISMS document lifecycle management.
• Assist in promoting cybersecurity hygiene among employees through awareness and training activities.
• Attendance and punctuality are essential functions of the position.
• Other duties as assigned by supervisor. These may, on occasion, be unrelated to the position described here.

EDUCATION REQUIREMENTS:

• Bachelor’s degree, preferably in Information Technology Management, Risk Management, or Information Sciences/Technology Analytics with a concentration in Cybersecurity or other related field of study.

CERTIFICATIONS/LICENSE/REGISTRATION REQUIREMENTS:

• None

QUALIFICATIONS/EXPERIENCE:

• Knowledge of information security frameworks and standards, such as NIST 800-53 and ISO 27001.
• Knowledge of security, privacy, IT audit and legal security standards, guidelines and principles
• Fundamental knowledge of personal computer operating systems, software, and hardware, including proficiency in Microsoft Office or similar productivity suites.
• Exceptional written and verbal communication skills.
• Strong attention to detail and excellent follow-through capabilities.
• Ability to manage and protect confidential information related to clinical trials/study activities.
• High energy and enthusiasm for tackling tasks and sharing innovative ideas.
• Ability to work independently and as part of a team.
  SUPERVISORY RESPONSIBILITIES: None

TRAVEL REQUIREMENTS: 0% – 5%

LI-Remote

LI-SA1

WCG is proud to be an equal opportunity employer – Qualified applicants will receive consideration for employment based on merit and without regard to race, color, national origin or ancestry, religion or creed, sex, sexual orientation, gender expression, gender identity, age, marital status, family or parental status, disability, genetic information, citizenship, veteran status, or any other legally recognized basis or status protected by federal, state, or local law. WCG complies with the Vietnam Era Veterans’ Readjustment Act and Section 503 of the Rehabilitation Act. We promote a “One WCG” culture where all are welcome, respected, valued, and empowered to make a difference every day to advance clinical research

• Assist with performing oversight of the development, implementation, and evaluation of information security practices to ensure continuous improvements.
• Assist with generating and maintaining KPIs to demonstrate compliance and effectiveness of the security program.
• Executing security objectives for the WCG’s Information Security Management System (ISMS).
• Participate in vendor and supplier assessments and evaluations.
• Support the review and completion of the customer security questionnaires/assessments.
• Support the maintenance of the WCG’s risk registries, risk treatment plans and handling issues and exceptions process.
• Assist in the ISMS document lifecycle management.
• Assist in promoting cybersecurity hygiene among employees through awareness and training activities.
• Attendance and punctuality are essential functions of the position.
• Other duties as assigned by supervisor. These may, on occasion, be unrelated to the position described here