GRC Analyst

• Location: Atlanta, GA
• Type: Contract
• Job #248594

GRC Analyst
 
Our client is seeking a Senior GRC Analyst to strengthen its commitment to regulatory compliance, enterprise risk mitigation, and sound governance. With a mission grounded in ethical integrity and a collaborative culture, this organization prides itself on its proactive approach to cybersecurity, risk management, and continuous improvement—setting the standard in its industry.
 
As the GRC Analyst, you will play a pivotal role in designing and enhancing enterprise-wide governance, risk, and compliance (GRC) programs. This position bridges multiple departments and functions, offering an opportunity to make a tangible impact on the company's strategic security initiatives and regulatory posture. You will develop policies, conduct risk assessments, monitor regulatory changes, and help drive compliance efforts across the organization. Your ability to translate complex regulations into actionable strategies will help protect the organization and align its risk framework with business priorities.
 
Key Responsibilities:

• Design and maintain governance frameworks, policies, and documentation ensuring regular reviews and organizational alignment.
• Conduct risk assessments, evaluate mitigation strategies, and monitor internal controls and audit practices.
• Analyze regulatory developments and industry standards (e.g., ISO, NIST, GDPR) to inform compliance strategies.
• Lead training and awareness programs to cultivate a risk-aware and compliance-focused culture across departments.
• Deliver security metrics and reports to senior leadership with clear insights and recommended actions.
• Collaborate cross-functionally with IT, legal, operations, and finance teams to integrate GRC initiatives with business objectives.
• Support RFPs, contract reviews, vendor risk assessments, and other business processes involving compliance documentation.

 
Qualifications & Requirements:

• Minimum 5 years of experience in governance, risk management, and compliance roles.
• Bachelor’s degree in Business, Finance, Law, Information Systems, or a related field (advanced degree or certifications such as CISSP, CISM, or CRISC preferred).
• Deep knowledge of industry standards and regulatory frameworks including ISO 27001, NIST, GDPR, NYDFS, and CMMC.
• Strong analytical and problem-solving abilities with proven success translating complex regulatory language into business-friendly guidance.
• Proficiency in risk assessment tools and cybersecurity best practices.
• Exceptional written and verbal communication skills, including experience creating both internal and client-facing documentation.
• Proven ability to manage multiple priorities and interface effectively with stakeholders at all levels.
• Comfortable in a fast-paced environment that requires adaptability, collaboration, and strategic thinking.

 
Ready to take the lead in shaping a risk-resilient, compliant, and secure future?
Submit your resume and contact information today to be considered for this impactful role. We look forward to connecting with professionals who are passionate about GRC excellence.