GRC Analyst I

Posted 6 days agoViewed

💎 Seniority level: Entry, 2-4 years

📍 Location: US

💸 Salary: 104000.0 - 130000.0 USD per year

🔍 Industry: Digital financial services

🗣️ Languages: English

⏳ Experience: 2-4 years

🪄 Skills: ComplianceRisk Management

Bachelor's degree in Information Security, Computer Science, or a related field.
2+ years of experience (ideally targeting 4) in Governance, Risk, and Compliance roles.
Strong experience in developing and implementing BCP and DRP strategies.
Hands-on experience with risk assessment methodologies and tools.
Excellent knowledge of compliance platforms.
Certifications such as CISSP, CRISC, CISA, or ISO 27001 Lead Auditor preferred.
Exceptional analytical, problem-solving, and communication skills.

Lead efforts to implement and maintain compliance with ISO 27001, PCI DSS, and SOC 2 frameworks.
Develop, update, and maintain security policies, procedures, and controls to meet regulatory and business requirements.
Conduct gap analyses and readiness assessments for compliance initiatives.
Perform risk assessments, identify vulnerabilities, and recommend mitigations to align with enterprise risk management strategies.
Drive the development, testing, and maintenance of BCP/DRP processes.
Coordinate internal and external audits related to PCI DSS, SOC 2, etc.
Promote a culture of security awareness by developing and delivering GRC-focused training.