Skip to content
mimi
All jobs

GRC Analyst

Insight Global

New York · On-site Full-time Mid Level 2w ago
Apply with a tailored resume Save job

About the role

About

We are seeking a detail oriented and analytically driven GRC Analyst to support the organization’s information security governance, risk management, and compliance program. This role is critical to ensuring alignment with regulatory requirements, industry standards, and internal policies, while enabling effective risk based decision making and continuous control assurance across the enterprise.

Key Responsibilities

  • Conduct information security risk assessments, including risk identification, analysis, evaluation, and treatment tracking.
  • Maintain risk registers and support risk reporting to management and key stakeholders.
  • Partner with system owners to identify control gaps and recommend risk mitigation actions.
  • Perform control assurance activities, including tests of control design and operating effectiveness.
  • Support internal and external audits by preparing evidence and responding to audit requests.
  • Track control deficiencies, remediation plans, and corrective actions through closure.
  • Support continuous monitoring of security and IT controls to assess ongoing effectiveness.
  • Monitor control performance, exceptions, and remediation status, and report on control health.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

Skills and Requirements

  • Bachelor’s degree in Information Security, Risk Management, Information Systems, or a related field.
  • 5+ years of experience in governance, risk, and compliance, information security, or IT risk management.
  • Strong working knowledge of ISO/IEC 27001, NIST CSF, and risk management methodologies.
  • Experience performing control design and operating effectiveness testing.
  • Familiarity with continuous monitoring concepts, compliance tooling, and GRC platforms.
  • Strong analytical, documentation, and communication skills.

Skills

GRC platformsInformation SecurityISO/IEC 27001NIST CSFRisk Management

Similar roles

Program Consultant

Canadian Institute for Health Information (CIHI)

Tier 1 SOC Analyst

InstantServe LLC

Security Engineer

SonarSource

Don't send a generic resume

Paste this job description into Mimi and get a resume tailored to exactly what the hiring team is looking for.

Get started free