Cybersecurity Sr. GRC Analyst
2 weeks ago
Cybersecurity Sr. GRC Analyst Location: 3-day Hybrid (Tue-Thu) in King of Prussia, PA or Denver, PA - Locals only Duration: 3-6 months, Contract-to-Hire (CTH) Rate: Best possible, but keep at the lower end (Oil & Gas client budget) Overview Our client, a top-tier Management Consulting firm, has partnered with an Oil & Natural Gas company to identify a Global Cybersecurity Senior GRC Analyst. This role sits within the Information Security, Compliance, and Risk Management function and reports to the Global Cybersecurity Governance, Risk & Compliance Manager. The Sr. Analyst will ensure the organization operates within regulatory, legal, and compliance obligations while effectively managing cyber risk. Key Responsibilities Governance • Develop and maintain corporate security policies, procedures, and frameworks aligned with NIST CSF, SOX, PCI, etc. • Assist in documenting and maintaining GRC processes and procedures. • Ensure IT functions comply with best practices and standards through reviews, audits, and assessments. • Track and report on key risk indicators and security metrics. Risk Management • Conduct gap assessments to identify threats, vulnerabilities, and risks. • Maintain the risk register, document risk acceptance decisions, and oversee compensating controls. • Perform third-party/vendor risk assessments and manage continuous monitoring. • Support cybersecurity due diligence for M&A targets and evaluate risk on incoming projects. Compliance • Monitor compliance with GDPR, HIPAA, SOX, PCI-DSS, and other applicable standards. • Drive the compliance framework ensuring policies/standards align with evolving regulations. • Track and report security exceptions and remediation plans. Stakeholder Engagement • Collaborate with business units to align risk practices with critical processes. • Educate stakeholders on risk frameworks and compliance requirements. • Partner with technical teams to validate remediation plans and present findings to governance committees. Collaboration & Reporting • Work with IT, Legal, HR, and other functions to align GRC initiatives. • Deliver regular risk and compliance metrics to senior leadership and boards. • Serve as a subject matter expert (SME) for GRC-related queries and initiatives. Ideal Candidate Profile • Strong hands-on experience in Governance, Risk, and Compliance (GRC) within cybersecurity. • Familiarity with frameworks and regulations such as NIST CSF, SOX, PCI, GDPR, HIPAA. • Skilled in vendor risk management and risk register maintenance. • Excellent stakeholder management, communication, and reporting skills. • Ability to thrive in a consulting/client-facing environment with Oil & Gas exposure a plus.
-
Senior Analyst, Cybersecurity GRC
2 weeks ago
New York, United States Next Step Systems LTD Full timeSenior Analyst, Cybersecurity GRC, New York, NY The Senior Analyst, Cybersecurity GRCwill administer the completion of compliance-related client requests to assess security policies and procedures. The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures implemented for managed systems and applications, as well...
-
GRC Analyst
4 days ago
New York, New York, United States Provident Bank Full time $65,000 - $85,000 per yearHow would you like to join one of the most highly regarded financial institutions in New Jersey with deep roots in the community? Provident is a successful and highly regarded multi-billion dollar bank that continues to grow with branches in New Jersey, Eastern Pennsylvania and New York. Our longevity is a testament to our commitment to placing our...
-
Cybersecurity Analyst
1 week ago
New York, United States VISTRADA Full timeVistrada is looking to hire a strong Cybersecurity Analyst to join our Cybersecurity practice. A Cybersecurity Analyst is part of a team that consults with clients about cybersecurity related topics and strategies. This role helps clients identify cybersecurity related improvements, conduct cybersecurity risk assessments, conduct cybersecurity scans and...
-
Junior Cybersecurity Analyst
1 week ago
New York, New York, United States Agency Cybersecurity Full time $20 - $25Location: On-Site in Flatiron, NYCPosition Type: Hourly, Full-Time Experience Level: Entry-levelCompensation: $20-25 per hourJob Summary:As a junior cybersecurity analyst at Agency, you will be crucial in bridging the gap between technology, our customers, and our internal business operations. You will work closely with multiple stakeholders to provide...
-
New York, NY, United States Next Step Systems LTD Full timeSenior Analyst, Cybersecurity Governance, Risk and Compliance, New York, NY The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related client requests to assess security policies and procedures. The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures...
-
New York, NY, United States Next Step Systems LTD Full timeSenior Analyst, Cybersecurity Governance, Risk and Compliance, New York, NY The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related client requests to assess security policies and procedures. The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures...
-
New York, NY, United States Next Step Systems LTD Full timeSenior Analyst, Cybersecurity Governance, Risk and Compliance, New York, NY The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related client requests to assess security policies and procedures. The Senior Analyst will respond to inquiries on the security controls policy, processes, and procedures...
-
GRC Analyst
3 days ago
New York, United States Mizuho Bank, Ltd. Full timeJoin the Mizuho team as a GRC Analyst!Key Responsibilities: Audit/Risk AssessmentCommunicate with auditors to answer questions and provide clarificationReview audit findings and provide feedback to managementParticipate in meetings with auditors and management to discuss audit resultsAssist with the preparation of documentation with Infrastructure teams to...
-
Cybersecurity GRC Manager
3 weeks ago
New Orleans, United States Ochsner Full timelocationsNew Orleans - New Orleans Region - Louisianatime typeFull timeposted onPosted 12 Days Agojob requisition idREQ_00238164 We've made a lot of progress since opening the doors in 1942, but one thing has never changed - our commitment to serve, heal, lead, educate, and innovate. We believe that every award earned, every record broken and every patient...
-
Sr. Manager, Information Security GRC
3 weeks ago
New York, United States Fanatics Full timeJob DescriptionThe Role The Sr. Manager, Information Security GRC (Fanatics Corporate) reports to the VP, Information Security (GRC) and will focus efforts on managing all cyber and third-party risks for Fanatics Corporate. In this you will play a crucial role in assessing, managing, and driving mitigation of risks associated with both our third-parties...
