Match score not available

Unlock Premium Benefits Today!
🚀 Elevate your career with priority access.
Stand out to top recruiters with Jobgether Priority Access:
  • ✅ Top Match: We help you identify job offers where you're a perfect fit.
  • ✅ Exclusive Referral Service: Connect directly with recruiters as a Jobgether Certified Premium User.
  • ✅ Personalized Feedback: Receive expert guidance on applications and have your profile manually reviewed.

Start Your Free Trial Now!

Start my free trial

Experienced IT/Security GRC Analyst

72% Flex
Remote: 
Full Remote
Experience: 
Mid-level (2-5 years)
Work from: 
Texas (USA)

Offer summary

Qualifications:

Bachelor or Graduate degree in cybersecurity, information systems, or related field, 3-5 years experience in IT security, risk management, compliance, or GRC.

Key responsabilities:

  • Assess, evaluate, and recommend security controls for client's environment
  • Develop policies, procedures and processes based on audit findings
  • Crosswalk controls across multiple frameworks to identify gaps
  • Translate technical information into easily understandable concepts
Hotman Group, LLC logo
Hotman Group, LLC Small startup https://hotmangroup.com/
2 - 10 Employees
About Hotman Group, LLC
Since 2016, Hotman Group has worked with hundreds of business leaders to help them feel more confident in their cybersecurity programs. We take the build - implement - run approach to ensure each client is fully equipped to do the right thing when it comes to cybersecurity. First, we start with an assessment to determine where you are based on a benchmark within a security compliance framework like SOC 2, NIST CSF, and others. Then, we strategically prioritize your action items based on the risks to your business. Lastly, we help you set the bar based on the objective you'd like to reach.From a self-governed discipline to an all-inclusive cybersecurity program to the strictest audits, we help you handle it all. Most companies look at their cybersecurity piecemeal, inadvertently putting themselves at risk. With Hotman Group, we approach cybersecurity strategically, with a plan so you can be fully protected. Specialities: vCISO/ Fractional CISO, Cybersecurity, Risk Assessment, Gap Assessment, Maturity, Assessment, SOC 2, HITRUST, HIPAA, NIST CSF, NIST 800-53, ISO 27001, FFIEC, SOC 2 Readiness, Remediation, Auditor Support, Regulator Support, SOC 2 Audit, Data Protection (PHI, PII, PI), Risk Management (ERM), Privacy (GDPR, CCPA, SOC 2), GRC, Third Party Risk Management (TPRM), Supply Chain Risk, Vendor Risk, Business Continuity, Disaster Recovery, Business Impact Analysis (BIA), Metrics, Breach Support, Incident Response (IR), Tabletops
See more Hotman Group, LLC offers

Job description

Logo Jobgether

Your missions

Hotman Group has an opportunity for a full-time, remote, experienced IT/ Security GRC Analyst. This position requires previous 3-5 years experience in a similar role or function, and starts as contract-to-hire. Top-tier workers will be converted to permanent within 6 months.

The IT/ Security Governance, Risk, and Compliance (GRC) Analyst will be supporting cybersecurity, compliance, risk, and GRC program initiatives for our clients. This person will work closely with the team and our senior partners to provide client and backend support for security/ IT controls, assessments, analysis, risk, audits, GRC tools, policies, processes, industry frameworks, privacy, just to name a few.

Responsibilities
  • Assess, evaluate, and make recommendations regarding the adequacy of the security/ IT controls for the client's environment and business objectives
  • Develop policies, procedures, and processes based on audit findings and/ or compliance framework requirements
  • Crosswalk controls across multiple security compliance frameworks and regulation to foster adoption and identify gaps
  • Advise and develop security standards, guidelines, and controls based on best practices and compliance frameworks
  • Translate security analyses, audit results, and compliance guidance into plain English that is understandable and actionable
  • Analyze and suggest improvements for security/ IT controls in both design and operation effectiveness
  • Develop risk registers, ideally aligned to controls, and execute basic risk assessment and management practices
  • Perform assessments (risk and/or compliance) to develop a baseline for creating or expanding a security program
  • Develop plans and tracking for non-compliance with applicable controls, and monitoring remediation progress against agreed upon timelines
  • Work with various client GRC tools
  • Perform data analysis and manipulation as needed to analyze a problem and create a solution for our clients
  • Evaluate new and existing technologies for compliance with information governance controls (e.g., access, authentication, encryption, logging, retention)
  • Perform other duties for Hotman Group or as assigned to best serve our clients in their security, risk, compliance, or GRC programs
Knowledge, Skills, and Abilities
    • Ability to manage and execute numerous parallel activities in a fast-paced, dynamic team environment
    • Strong organizational skills with ability to manage multiple tasks and projects, demonstrated prioritization and decision-making skills to not miss deadlines or drop assignments
    • Strong written and verbal skills, including a demonstrated ability to translate complex or technical information into concepts that are easily understood and actionable
    • Familiarity and knowledge of fundamental security/ IT concepts (e.g., retention, data classification, change management, access control, asset management, third party risk)
    • Demonstrated critical thinking skills, but also able to follow instruction to meet the team’s overall objective
    • Technical aptitude to be able to learn new technologies quickly with little instruction
    • Strong attention to detail and high commitment to quality
    • Good attitude and courtesy to work with a smaller, fast-paced team
    • Efficient worker looking for ways to gain efficiencies and maximize time spent
    • Able to operate with a high degree of independence executing with excellent follow-through for assigned tasks, but also knowing when to stop, ask questions, and seek input from the team or management
    • Passionate about cybersecurity, risk, compliance, and GRC to make companies more secure and healthy in protecting their data
    • Not afraid to roll your sleeves up, learn what’s needed to learn, get done what needs to get done
    • Reliability, discretion and confidentiality
    Requirements
    • Bachelor or Graduate degree in a cybersecurity, information systems, or related field
    • 3-5 years experience in a cybersecurity, audit, risk, compliance, or GRC role required
    • Working knowledge of common security and privacy frameworks and regulation (e.g. ISO, NIST, CIS, SOC 2, HIPAA, CCPA, PCI DSS)
    • Knowledge of risk management practices, and risk-based thinking to drive prioritization
    • Experience responding to, analyzing, and communicating security and information technology-related practices and controls
    • Preference given to those with security or risk management certifications, or willingness to pursue
    • Technical skills: Excel, Word, PowerPoint, GRC tools, quick learner of new technologies in general
    • Understand audit processes and requirements
    • Candidate must be located in the USA, and have permanent authorization to work in the USA for any employer
    • Clear background check
    • Strong Internet connection and secure working area
    About Us

    Hotman Group is a rapidly growing boutique firm with deep commitment to quality and execution for our clients. We help business leaders with integrity gain the trust of their customers by providing comprehensive cybersecurity & GRC services.

    We offer cybersecurity strategy and program development; fully managed programs including execution, implementation, maturation, and remediation; and everything in between with one-time projects like policies, audits, questionnaires, risk assessments, incident response plans, testing, third party vendors, and other cybersecurity or compliance challenges. We support all the top security compliance frameworks, e.g. SOC 2, NIST CSF, ISO 27001, HITRUST to name just a few.

    Our Corporate Culture

    We pride ourselves on leaving the Corporate culture behind and creating a collaborative environment where everyone can thrive and grow, be excited to fully show up to work every day, and have a lot of fun in the process of solving complex problems and creating amazing results for our clients!

    Perks
    • Fully remote collaborative team
    • Opportunities to grow as we serve our clients
    • Break the Corporate mold
    • Work hard, play hard
    • Passionate about what we do
    Benefits *
    • Paid holidays and time off
    • 401K with employer match
    • Medical insurance
    • Short- and long-term disability insurance
    • Life insurance
    • Paid training and development


    * Benefits are only available to full-time permanent employees, not contract or contract-to-hire.

    No calls or agencies please.

    Required profile

    Experience

    Level of experience: Mid-level (2-5 years)
    Spoken language(s):
    English
    Check out the description to know which languages are mandatory.

    Hard Skills

    IT ControlsRisk ManagementAuditCompliance SoftwarePolicy DevelopmentRisk AssessmentProject PlanningSoftware Quality Assurance

    Soft Skills

    • Reliability
    • Organizational Skills
    • Interpersonal Skills
    • Analytical Thinking
    • Problem Solving
    • Proactive Mindset
    • Independence
    • Team Collaboration
    • Attention to Detail
    • Positive Attitude
    • Continuous Learning
    • Discretion
    • Confidentiality
    Are you interested?

    Go Premium: Access the World's Largest Selection of Remote Jobs!

    • Largest Inventory: Dive into the world's largest remote job inventory. More than half of these opportunities can't be found on standard platforms.
    • Personalized Matches: Our AI-driven algorithms ensure you find job listings perfectly matched to your skills and preferences.
    • Application fast-lane: Discover positions where you rank in the TOP 5% of applicants, and get personally introduced to recruiters with Jobgether.
    • Try out our Premium Benefits with a 7-Day FREE TRIAL.
      No obligations. Cancel anytime.
    Upgrade to Premium

    Find other similar jobs

    SEE MORE JOBS
    Sign in or sign up with Google or LinkedIn