Senior GRC Analyst

A company is looking for a Senior Governance, Risk & Compliance (GRC) Analyst to enhance its security governance and compliance posture.

Key Responsibilities

Develop and maintain security and privacy policies aligned with various regulatory frameworks

Lead enterprise risk assessments and manage the Third-Party Risk Management program

Deliver executive-ready reports and oversee the Security Awareness & Training program

Required Qualifications

5+ years of experience in cybersecurity, governance, risk, compliance, or privacy

Strong knowledge of security and regulatory frameworks including ISO 27001, SOC 2, and GDPR

Hands-on experience with GRC tools for managing policies and risks

Experience with client due diligence processes and vendor risk management

Certifications such as CISM, CRISC, CISSP, CISA, or CIPM / CIPP are highly valued