Job Specifications
This is a contract to hire opportunity in the Atlanta area. Candidates MUST be local. Candidates MUST have insurance or financials services industry experience. This role is not open to C2C, OPT, or Visa consideration. No vendor support of any kind needed.
JOB DESCRIPTION
Key Responsibilities
Technology Risk Management
Identify, assess, and quantify risks across infrastructure, applications, and third-party services.
Collaborate with engineering, security, and business teams to develop and implement risk remediation plans.
Escalate high-impact risks to senior leadership with clear articulation of business implications and recommended mitigation strategies.
Governance, Risk, and Compliance (GRC) Enablement
Act as a liaison between IT, compliance, legal, and audit teams.
Support the implementation and ongoing improvement of GRC frameworks, tools, and practices.
Ensure that technology practices align with internal policies and external regulatory obligations.
Controls and Assurance
Evaluate the effectiveness of IT controls related to access management, change management, data protection, and more.
Support internal and external audits including SOC 2, ISO 27001, and similar frameworks.
Maintain documentation and evidence to ensure audit readiness and regulatory compliance.
Standards and Frameworks
Apply industry frameworks such as COBIT, NIST, ISO 27001/2, and SOC 2 in daily operations.
Assist in developing and refining IT policies, standards, and procedures to enhance control environments.
Qualifications
7+ years of experience in IT risk, audit, or GRC roles—preferably in the insurance or financial services industry.
Strong understanding of IT risk management principles and control frameworks (e.g., COBIT, ISO 27001, SOC 2).
Familiarity with cybersecurity regulations such as the NYDFS 23 NYCRR 500 or similar regulatory environments.
Experience working with GRC platforms (e.g., Archer, ServiceNow GRC, OneTrust) is a plus.
Knowledge of cloud technologies (AWS, Azure) and associated risk considerations.
Excellent communication skills with the ability to explain technical risks in business terms.
Professional certifications such as CRISC, CISA, or CISSP are highly desirable.
About the Company
BlueSky Resource Solutions (BSRS) is a nationwide staffing company that understands that people make your business successful. BlueSky is your trusted partner for IT, Finance & Accounting, and Telecom talent. BSRS provides nationwide talent placement services and workforce solutions to clients navigating growth and change. Our vast network and proprietary database of qualified candidates enable us to find the perfect fit for your organization or project. BSRS understands that keeping our customer's cost-controlled and profit...
Know more