Entry Level GRC Analyst

📋 Description

• Evaluate and enhance client security and IT controls.

• Create policies, processes, and risk evaluations that align with leading frameworks such as NIST, ISO 27001, and SOC 2.

• Document security specifications, assist in control implementation, and monitor remediation progress.

• Develop risk registers, aid in assessments, and oversee remediation activities.

• Engage directly with GRC tools and provide solutions to intricate client issues.

• Convert technical and regulatory requirements into straightforward, actionable steps for clients.

• Take part in peer reviews of deliverables prior to client submission.

⛳️ Requirements

• Bachelor's or Master's degree in Cybersecurity, Information Systems, or a related discipline.

• 1 to 2 years of relevant professional experience in an office or corporate setting.

• Strong grasp of essential security and IT principles, including access controls, data retention, and change management.

• Knowledge of key security and privacy frameworks such as ISO, NIST, SOC 2, and HIPAA.

• Actively pursuing a relevant certification (Security+, CC, SSCP) is highly preferred.

• Must be able to pass a background check.

• A private, dedicated workspace with a door for client communications and confidential tasks.

🏝️ Benefits

• Top performers have the opportunity to transition into permanent positions within 6 months.

• Collaborate with individuals who are passionate about their work and motivate each other to excel.

• An environment free from politics, silos, and hierarchy between you and decision-makers.