Job Description

Job Description

Job Description

We are seeking a GRC (Governance, Risk, and Compliance) Analyst to play a key role in identifying and managing risks while ensuring regulatory and policy compliance. The ideal candidate will assist in building and operating a comprehensive cyber compliance program, collaborating across departments to implement governance frameworks, maintain certifications, and address third-party risk. This role offers the opportunity to make a tangible impact on organizational security, operational efficiency, and overall compliance posture.

Responsibilities:

• Conduct risk assessments to identify, monitor, and mitigate potential vulnerabilities.
• Develop and implement risk mitigation strategies and provide actionable recommendations to stakeholders.
• Ensure compliance with relevant laws, regulations, and standards (e.g., GDPR, PCI, ISO 27001).
• Support the development and execution of cyber compliance programs, including evidence tracking, continuous monitoring, and audit preparation.
• Monitor and maintain internal compliance programs, track exceptions, and manage Plan of Action and Milestones (POA& M).
• Design, review, and update governance frameworks, policies, and procedures to improve operational efficiency and address regulatory needs.
• Oversee cyber reputation management by tracking scores and making actionable recommendations for improvement.
• Respond to third-party security questionnaires and perform risk assessments for software and enterprise risk management.
• Assist with IT disaster recovery planning through documentation, tracking, and ad hoc updates.
• Facilitate ISO certification processes, including evidence collection and compliance tasks.
• Define and communicate compliance requirements, establish controls, and create supporting templates and workflows.
• Prepare clear, data-driven reports and dashboards for leadership on risk management and compliance performance.
• Collaborate with internal departments and external auditors to ensure smooth coordination for risk and compliance initiatives.

Interested candidates should contract Sally Lander at 612.249.0254 or submit resumes to sally.lander@roberthalf.(com).

• 3+ years of experience in Governance, Risk, and Compliance (GRC).
• Strong understanding of risk management frameworks, including NIST or COSO.
• Knowledge of compliance standards and applicable laws.
• Familiarity with GRC tools and software, such as RSA Archer, MetricStream, or similar platforms.
• Ability to assess complex risk scenarios, identify patterns or trends, and provide actionable insights to support decision-making.
• Ability to identify discrepancies, non-compliance issues, or emerging risks impacting the organization.
• Excellent verbal and written communication skills to prepare detailed reports and interact effectively with stakeholders at various levels.
• Bachelor's degree in a related field is preferred.

Job Tags

Similar Jobs