GRC Analyst
Chicago, Illinois
Onsite
Full Time
$85k - $95k
We're working with a company whose platform offers comprehensive financial information and advice tailored for consumers, empowering individuals to make informed financial decisions. They reach millions of people monthly through educational resources and user-friendly calculators and tools.
Join this vital team where you'll play a key role in making important decisions and enhancements to their information security and compliance program. You'll collaborate closely with IT, audit, and legal teams to address security challenges and contribute to shaping the organization's risk management framework, while working alongside other security professionals.
Required Skills & Experience
Tech Breakdown
Applicants must be currently authorized to work in the US on a full-time basis now and in the future.
Join this vital team where you'll play a key role in making important decisions and enhancements to their information security and compliance program. You'll collaborate closely with IT, audit, and legal teams to address security challenges and contribute to shaping the organization's risk management framework, while working alongside other security professionals.
Required Skills & Experience
- 3-5 years of advanced IT skills with high level of information security experience and expertise
- Knowledge of information security risk management frameworks and compliance practices
- Experience with common security standards and regulations (PCI DSS, SOX IT General Controls, NIST 800-53, ISO2700x)
- Knowledge of securing network technologies, client, and server operating systems
- Experience responding to, analyzing, and communicating information security incidents
- 2-3 years of planning and managing security projects
- Ability to develop security standards and guidelines based on best practices and industry standards
- Excellent interpersonal, communication, and presentation skills, including formal report writing experience
- Experience working with internal/external auditors and compliance assessors
Tech Breakdown
- 70% Risk Assessment & Compliance Management
- 30% Policy Development & Audit Coordination
- 60% Risk analysis, compliance monitoring, and security assessments
- 40% Team collaboration, stakeholder communication, and audit support
- Lead development and implementation of system-wide risk management function
- Execute compliance program ensuring IT activities meet defined requirements and regulations
- Coordinate information technology and security-related audits
- Develop effective policies and practices to secure protected and sensitive data
- Work with internal audit, PCI compliance assessors, and external consultants
- Bonus eligible
- Medical, Dental, and Vision Insurance
- Vacation Time
- Stock Options
Applicants must be currently authorized to work in the US on a full-time basis now and in the future.