Plus
Включить Plus
Назад
Company hidden
2 дня назад

GRC Analyst (Cybersecurity)

Формат работы
hybrid
Тип работы
fulltime
Грейд
middle
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

GRC Analyst (Cybersecurity): Ensuring compliance with regulatory and contractual requirements and managing third-party risk with an accent on cyber and compliance risk management. Focus on measuring success through KPIs/KRIs, identifying improvement opportunities, and maturing security controls.

Location: Hybrid (Overland Park, KS or Cary, NC, US)

Company

A 100-year-old employee-owned global leader in sustainable infrastructure engineering, procurement, and consulting.

What you will do

  • Manage cyber risk by collecting KPIs/KRIs and automating metrics to provide data-driven insights to decision makers.
  • Monitor the global regulatory landscape and validate compliance with client contractual requirements related to data security and cyber resilience.
  • Develop IT governance policies and standards of practice aligned with regulatory and contractual requirements.
  • Perform third-party risk assessments and review security clauses in contracts to identify potential risk factors.
  • Support internal and external audits, certifications, and the development of risk mitigation plans.
  • Leverage GenAI tools to improve the efficiency of GRC delivery functions.

Requirements

  • Bachelor's degree in Information Systems, Computer Science, or a related field.
  • 2–3 years of experience in a GRC role.
  • Must be able to complete pre-employment onboarding including criminal background check and drug screen.

Nice to have

  • Professional certifications such as CRISC, CISSP, or similar.
  • Experience with GRC platforms, risk management methodologies, and privacy laws.
  • Familiarity with regulatory frameworks (e.g., NIST, ISO 27001, CMMC, UK Cyber Essentials).
  • Strong collaboration skills with IT teams and stakeholder engagement.

Culture & Benefits

  • 100% ESOP-owned company, allowing employees to share in financial rewards through stock ownership.
  • Hybrid work environment with flexible schedules to support work-life balance.
  • Comprehensive benefits including medical, dental, vision, and a company-matched 401k.
  • Paid vacation, holiday time, and sick leave.
  • Additional perks such as tuition reimbursement and adoption assistance.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →