Grc Specialist

**What We're Looking For**:
As an individual, you complete tasks and projects with mínimal supervision and act as a vital member of the global cybersecurity team, as well as, a valuable embedded resource within 2U governance teams.

**Responsibilities Include, But Are Not Limited To**:
Technical (75%)
Participate as a member of Cybersecurity in all annual compliance projects and initiatives.
Participate in annual PCI-DSS, SOC2, SOX and CyberEssentials assessments and audit engagements.
Assist with requests from internal and external partners and contribute to the Third Party Risk Management process such asvendor onboarding and continuous vendor monitoring..
Participate in engagements with teams across business units to translate governance requirements and standards into tangible controls and solutions.
Identify control weaknesses and deficiencies and assist in the creation of the relevant remediation strategies.
Identify required security training for engineers, developers and internal security team, where necessary and contribute to effectiveness of the 2U Security Awareness Program.

Research (20%)
Stay abreast of emerging compliance regulations and standards with the aim of constantly improving the organization's security posture.
Be active in the Cybersecurity communities and stay informed on current threats, attack techniques and strategies.

Personal (5%)
Open to change and ability to pivot to different priorities and situations.
Must be able to work well independently as well as part of a larger team.
Ability to work on a diverse team with a diverse range of people

**Things That Should Be In Your Background**:

- 5 years of combined experience in IT engineering,security or related fields.
- Knowledge of Security Frameworks and best practices (PCI-DSS, NIST, ISO27001, COSO, etc).
- Enterprise Risk Management frameworks and processes.
- Threat and vulnerability management policies, systems and remediations.
- Specialist in translating control requirements into technical controls.
- Documenting, implementing and measuring controls and processes.
- Defining and measuring KPIs and KRIs.
- Able to conduct assessments and communication of the results thereof.
- Advanced technical courses (ex. CISSP,CISM,CISA,CRISC).
- Experience with technical and narrative writing.

**Other Attributes That Will Help You In This Role**:

- Bonus skills that are preferred, not required

**About **2U** **Inc**. (NASDAQ: TWOU)**

2U is comprised of 3 lines of business: Graduate Degree Programs, Short Course, and Boot Camps. Going beyond traditional learning management systems, we use tech, people, and data to help top universities and enterprise organizations transform in the digital era—and eliminate the back row in higher ed. We support lifelong learning which means thinking beyond a single degree. It means finding ways for students to gain the skills they need to change careers, evolve their expertise, and meet the challenges of the changing world head-on. We help our partners fill those needs—developing new digital education technologies and offerings capable of supporting students at different points in their lives. Whether they need a simple refresher, to learn something new, or to change their career trajectories completely, our partners are there to help them succeed. Together with our partners, 2U has positively transformed the lives of more than 275,000 students and lifelong learners.

**2U** Diversity and Inclusion Statement**

2U is an Equal Opportunity Employer that is committed to diversity and inclusion. Applicants from the previously disadvantaged groups and people with disabilities will be given preference.

**Why It's **Great** to Work at **2U**

2U Cape Town offers a high-energy work environment that's both challenging and fun. We work hard, but our offices are casual and social places. We wear jeans to work and fuel brainstorming sessions with coffee from our in-house barista. We have other in-house perks like subsidised healthy meals, a gym with free yoga sessions and social events all year round. We celebrate special milestones like birthdays and workaversaries, truly showing that #RelationshipsMatter.

**Benefits**

2U Cape Town offers a comprehensive benefits package:

- 2 complimentary Getsmarter short courses per year
- Subsidised medical aid with Discovery
- 4% 2U contribution towards Discovery Life Pension Fund and Group Risk Benefit
- Employee Assistance Program (EAP)
- Generous leave policy including time off to volunteer for non-profit organizations

Note: The above statements are intended to describe the general nature and level of work performed by individuals assigned to this position, and are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed.

2U is an equal opportunity employer that does not discriminate against app