Governance, Risk, and Compliance Analyst

We are seeking a proactive GRC Analyst in information security, risk management, or compliance. The ideal candidate will help strengthen our organization’s governance, risk, and compliance posture by supporting risk assessments, policy management, control testing, and audit readiness efforts. Key Responsibilities • Support the development, implementation, and maintenance of the organization’s Governance, Risk, and Compliance (GRC) framework. • Conduct risk assessments, track remediation plans, and ensure timely closure of identified risks. • Assist in maintaining compliance with relevant standards and regulations (e.g., ISO 27001, SOC 2, GDPR, NIST, HIPAA, PCI-DSS). • Coordinate and participate in internal and external audits, gathering evidence and managing findings. • Maintain and update information security policies, procedures, and controls. • Support third-party risk management, including vendor due diligence and security assessments. • Monitor compliance metrics and prepare periodic GRC reports and dashboards. • Collaborate with cross-functional teams (IT, Legal, Security, and Business Units) to ensure consistent risk management practices. • Provide awareness and training on governance, risk, and compliance topics. Qualifications & Requirements • Bachelor’s or Master’s degree in Information Security, Computer Science, Risk Management, or a related field. • 2+ years of hands-on experience in GRC, information security, compliance, or risk management. • Basic understanding of risk assessment methodologies and control frameworks (ISO 27001, NIST, COBIT, etc.). • Experience working with GRC tools (e.g., Archer, ServiceNow GRC, OneTrust, or similar) is an advantage. • Familiarity with regulatory compliance requirements (GDPR, HIPAA, SOC 2, etc.). • Strong analytical, problem-solving, and organizational skills. • Excellent written and verbal communication skills. • Certifications such as ISO 27001 Lead Implementer/Auditor, CRISC, CISA, or CompTIA Security+ are preferred but not mandatory. Job Type: Full-time Pay: $80,730.97 - $109,267.40 per year Benefits: • 401(k) • Dental insurance • Health insurance • Paid time off Work Location: In person