GRC Analyst
Gravity IT Resources
To Apply for this Job Click Here
Job Title: GRC Analyst
Job Type: Contract
Location: Juno Beach, FL
Responsibilities
- Manage risk and vulnerability assessments, validation testing, compliance reviews, and audits in accordance with NIST standards
- Maintain and monitor a central repository for audit evidence
- Inform the proper stakeholders of important concerns and hazards
- Work together with other stakeholders to link our corporate IT, procurement, and privacy departments with GRC objectives
- Maintain up-to-date knowledge of procedures and methods that serve to broaden team knowledge and industry expertise
- Manage security standards, policies, and practices on an annual basis to make sure they meet corporate demands
- Assist the department in responding to inquiries from the business units about ongoing operational compliance
- Be proactive in seeking out areas for improvement and offer insightful advice and value-added guidance on process and control enhancements
Education
- Bachelor’s degree in information cybersecurity, risk management, governance, or a related field
Required Skills and Experience
- 5+ years of direct experience in information security, with a main emphasis on risk and compliance
- Thorough understanding of market structures, including relevant regulatory compliance requirements (ISO27001, SOC 2 , NIST, FedRamp, CMMC, PCI, GDPR, etc.)
- Knowledge and experience utilizing NIST 2.0
- Proven track record of organizing and carrying out several risk and compliance projects
- Ability to successfully manage third-party audits, compile evidence, and organize audit responses
- Keen attention to detail
- Effective written and verbal communication skills and the capability to communicate with cross-functional teams
- Proven analytical and problem-solving abilities for managing initiatives that advance corporate goals