Onsite Archer GRC Systems Analyst (W2 Only // No C2C)
Description:
Minimum 8+ years’ experience in development, maintenance, testing, and support of Archer 6.x GRC applications including and not limited to designing complex On-Demand Applications (ODAs), and complex workflows.
6 + years’ experience in Information Security, Information Technology, security controls, and GRC industry best practices.
Contribute to the implementation of new Archer use cases, development and configuration changes to the Archer platform, and the migration of risk and business processes to Archer.
Collaborate closely with relevant risk and business stakeholders in gathering, understanding, documenting, and converting business requirements into technical solutions in the system.
Work with end-users/ partners to create and manage complex workflow rules, test scenarios, data validation, notification, or workflow triggers.
Collaborate with development team when system integration may be required with existing applications using custom JavaScript, advanced data feeds, RESTful APIs, Power Automate, and/ or custom development.
Coordinate with project management team on project documentation including but not limited to system documentation, business process documentation, work effort requirement and duration, and project status reporting.
Expert level understanding of risk management, compliance, and governance principles, with hands-on experience in Archer solutions such as: Issue Management, Policy Management, Privacy Controls, and Risk Assessment.
Monitor Archer performance, oversee daily operations of system to ensure performance and availability and troubleshoot with Archer directly when necessary.
Proficient in Visio flows, mail merge and reporting tools (Power BI, Tableau, etc.).
Robust critical thinking skills, attention to detail, coupled with a desire for growth, to learn and engage with peers in technical and design discussions.
Passion to provide guidance on standard methodologies and mentoring support to the other developers.
GRC Risk certifications (CRISC, CSIM, CISSP, GRCP) is nice to have.