
Senior GRC Analyst
Wealth.com
full-time
Posted on:
Location Type: Hybrid
Location: New York City • New York • United States
Visit company websiteExplore more
Salary
💰 $120,000 - $130,000 per year
Job Level
Tech Stack
About the role
- Manage information security and third-party risk assessments and develop mitigation strategies.
- Lead internal and external audits, including evidence collection and remediation.
- Develop and maintain security standards and policies in line with regulatory requirements.
- Collaborate with internal teams to integrate security and risk management practices.
- Monitor and report on security issues, policy violations, and non-compliance.
Requirements
- 5+ years in Information Security with a focus on GRC or security auditing in a regulated industry.
- Expertise in GRC frameworks such as NIST CSF, ISO 27001, SOC 2, PCI DSS, and relevant financial regulations.
- Understanding of enterprise technology, cloud environments, network security, and data protection.
- Strong analytical, problem-solving, and communication skills.
- Professional certifications like CISSP, CISA, CRISC, or CISM are a plus.
- Experience with GRC tools such as ServiceNow, Archer, or MetricStream.
- A Bachelor's degree in a relevant field.
Benefits
- Competitive salary.
- Hybrid work arrangement if located in the Phoenix or New York area; otherwise, fully remote. We also meet together in person several times a year.
- Excellent medical, dental, and vision insurance options, with low-cost premium structures that demonstrate our commitment to offering great value to our employees.
- 100% company-paid basic life insurance, short-term and long-term disability insurance.
- 100% paid parental leave upon eligibility.
- Company equity managed through Carta.
- 401k with match and 100% vesting upon hire.
- Flexible PTO in an environment where taking time off to relax or recharge is supported and encouraged.
- Take time off for holidays—and yes, your birthday counts too. Celebrate, relax, and recharge without thinking twice.
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
information securityGRCsecurity auditingNIST CSFISO 27001SOC 2PCI DSSnetwork securitydata protectionrisk management
Soft Skills
analytical skillsproblem-solvingcommunication skills
Certifications
CISSPCISACRISCCISM