Demo

Senior Cybersecurity GRC Analyst

Hamlyn Williams
New York, NY Full Time
POSTED ON 1/24/2025 CLOSED ON 2/21/2025

What are the responsibilities and job description for the Senior Cybersecurity GRC Analyst position at Hamlyn Williams?

The Senior Analyst, Cybersecurity Governance Risk & Compliance is responsible for managing compliance-related client requests to evaluate security policies and procedures. This role involves responding to inquiries regarding the Firm's security controls, policies, processes, and procedures for managed systems and applications. The Senior Analyst also supports Third Party Risk Management and Governance and Risk functions by conducting vendor due diligence, reassessments, ongoing monitoring, and contributing to broader GRC initiatives. Strong communication skills, attention to detail, initiative, and the ability to learn quickly are essential for success in this position. This is a remote position but candidates must live in either: NYC, Washington DC, Atlanta, or Chicago.

Key Responsibilities:

  • Compliance and Client Requests:
  • Familiarize yourself with the Firm’s IT Risk Management framework, including its policies, standards, procedures, and processes.
  • Develop expertise in the Firm’s control structure to create or update standardized responses for client questionnaires (e.g., SIG).
  • Prepare and respond to compliance requests, referencing evidentiary artifacts and documentation as needed.
  • Coordinate external information security assessments and manage remediation efforts while tracking assessment status.
  • Assessment and Reporting:
  • Collaborate with external assessors and internal subject matter experts to address compliance inquiries and share security artifacts.
  • Support the development of processes for conducting information security control assessments.
  • Collect and analyze metrics to measure the effectiveness of security controls and support reporting for the Information Security Program.
  • Maintain status tracking for findings from security assessments, GRC activities, and TPRM due diligence assessments, ensuring proper remediation efforts are documented.
  • Governance, Risk, and Compliance Development:
  • Contribute to the creation and refinement of GRC-related processes, procedures, and documentation.
  • Collaborate with the CISO, senior managers, and other stakeholders to report on the status of the Information Security Program and ongoing security projects.
  • Participate in initiatives to streamline and enhance GRC solutions, processes, and procedures.
  • Work with InfoSec, Privacy, and GRC management to support coordination, tracking, and reporting of team strategies and goals.

Qualifications and Skills:

  • Technical Expertise:
  • Strong understanding of risk management concepts, frameworks, and standards (e.g., CSC, NIST, ISO, COBIT).
  • Experience with the NIST Cybersecurity Framework and auditing security controls from NIST SP800-171 and NIST SP800-53A.
  • Familiarity with information security concepts, technologies, and processes.
  • Compliance and Audit Knowledge:
  • Experience working with internal and external auditing firms.
  • Proficiency in analyzing IT and security control requirements and related technology processes.
  • In-depth knowledge of due diligence and compliance documents (e.g., SOC II Type II, ISO 27001 Certification, SIG Questionnaires, Certificates of Insurance, Pen Test reports).
  • Technical Tools:
  • Proficiency in MS Outlook, Word, Excel, Visio, and PowerPoint.
  • Soft Skills:
  • Excellent communication skills to interact effectively with administrative and legal teams.

Education and Experience:

  • Required:
  • Bachelor’s degree.
  • At least 5 years of combined experience in information technology and information security.

Senior GRC Analyst
Lensa -
New York, NY
Senior GRC Analyst
Fitch Group -
New York, NY
Senior Project Manager
Agency Cybersecurity -
New York, NY

If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Senior Cybersecurity GRC Analyst?

Sign up to receive alerts about other jobs on the Senior Cybersecurity GRC Analyst career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$149,432 - $188,965
Income Estimation: 
$179,455 - $227,077
Income Estimation: 
$70,462 - $84,818
Income Estimation: 
$77,991 - $108,747
Income Estimation: 
$87,093 - $107,335
Income Estimation: 
$140,233 - $181,029
Income Estimation: 
$161,209 - $233,553
Income Estimation: 
$87,093 - $107,335
Income Estimation: 
$111,725 - $147,313
Income Estimation: 
$112,673 - $137,290
Income Estimation: 
$140,233 - $181,029
Income Estimation: 
$161,209 - $233,553
Income Estimation: 
$112,673 - $137,290
Income Estimation: 
$139,945 - $168,577
Income Estimation: 
$140,233 - $181,029
Income Estimation: 
$161,209 - $233,553
Income Estimation: 
$139,945 - $168,577
Income Estimation: 
$164,835 - $201,088
Income Estimation: 
$135,994 - $168,063
Income Estimation: 
$161,209 - $233,553
This job has expired.
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at Hamlyn Williams

Hamlyn Williams
Hired Organization Address San Francisco, CA Full Time
Join a Stealth Mode Startup with Breakthrough Ultrasound Tech! Our Medical Device client is revolutionizing ultrasound i...
Hamlyn Williams
Hired Organization Address Wilson, NC Full Time
We represent our client, a leading global biopharmaceutical company, in their search for an Automation Engineering Manag...
Hamlyn Williams
Hired Organization Address New York, NY Full Time
Our financial services client is hiring a Vice President of Operational Risk to support risk oversight using the first a...
Hamlyn Williams
Hired Organization Address Dallas, TX Full Time
Our Client is a global law firm in over thirty countries, handling some of the most complex and impactful legal matters....

Not the job you're looking for? Here are some other Senior Cybersecurity GRC Analyst jobs in the New York, NY area that may be a better fit.

Senior GRC Analyst

Abnormal Security, New York, NY

Senior GRC Analyst

News Corp, New York, NY

AI Assistant is available now!

Feel free to start your new journey!