Senior GRC Analyst (Cybersecurity)

TL;DR

Senior GRC Analyst (Cybersecurity): Driving governance, risk, and compliance initiatives across the organization with an accent on IT audit and compliance frameworks like SOC 2, PCI DSS 4.0, and ISO 27001. Focus on executing control testing, identifying root causes of gaps, and strengthening security controls in cloud-based ecosystems.

Location: Hybrid (Lehi, Utah). Must be based in one of the following US states: Arizona, Idaho, Utah, Wyoming, Texas, North Carolina, Florida, Georgia, South Carolina, Ohio, Pennsylvania, or Illinois.

Salary: $97,000 - $158,300 a year

Company

Global leader in AI-driven property management technology providing a comprehensive operating system for owners and residents worldwide.

What you will do

• Lead policy development, internal audits, and process improvements for SOC 2, PCI DSS 4.0, and ISO 27001 compliance.
• Execute and document internal control testing across IT, security, cloud, and business operations.
• Identify root causes of control deficiencies and recommend corrective remediation plans.
• Monitor and assess cloud environments (GCP, AWS) and ERP systems to validate security controls.
• Conduct third-party risk assessments and vendor compliance reviews.
• Collaborate cross-functionally to enhance GRC frameworks and internal control environments.

Requirements

• Bachelor’s degree in Accounting, Finance, Information Systems, or a related field.
• Minimum of 5 years of experience in GRC, IT audit, or security compliance.
• Proficiency in regulatory frameworks including SOC 2, PCI DSS 4.0, and ISO 27001.
• Experience leveraging AI-powered tools or automation to improve audit and compliance workflows.
• Strong analytical skills to evaluate audit findings and recommend remediation strategies.
• Must be located in one of the supported US states for employment eligibility.

Nice to have

• Professional certifications such as CISA, CISSP, or CRISC.
• Experience in SaaS environments with a focus on IT risk and security governance.
• Hands-on experience with GCP, AWS, and cloud-based ERP platforms.

Culture & Benefits

• Flexible culture with remote and hybrid work options and frequent company recharge days.
• Comprehensive medical, dental, and vision coverage, including fertility benefits.
• HSA/FSA options and employer-paid disability benefits.
• 401(k) retirement plans with employer matching.
• Wellness initiatives including an onsite gym at HQ, gym memberships, and mental health resources.
• hirify.global Cares program for volunteerism and charity events.