InfoSec GRC Analyst (St. Louis)

• About Our Client: The organization operates within the information security sector, focusing on governance, risk, and compliance challenges. It addresses the evolving regulatory environment by maintaining and enhancing a robust compliance landscape. The company emphasizes operational excellence and cross-functional collaboration to safeguard organizational integrity and adapt to changes in information security standards.

• About the Opportunity:

The InfoSec GRC Analyst role is designed to enhance and maintain the organization''s information security governance, risk, and compliance framework. This position is responsible for monitoring regulatory changes, refining control frameworks, coordinating audit processes, and delivering training. The role is central to supporting the organization’s compliance agility and ensuring effective partnerships across multiple departments.

• Responsibilities:
• Utilize AI-powered tools to automate compliance monitoring, risk analysis, and evidence collection.
• Monitor and analyze emerging regulations and standards.
• Provide guidance on implementing new regulatory requirements and remediation.
• Develop, implement, and maintain control frameworks.
• Conduct regular reviews and collect evidence related to compliance controls.
• Maintain control mappings to identify overlaps or gaps.
• Prepare and maintain documentation for audit and compliance activities.
• Coordinate on-site audit logistics including scheduling and resource management.
• Manage audit vendor requirements and document repositories.
• Assist in formulating and communicating audit plans and progress.
• Support training design and delivery on controls, standards, and regulations.
• Track risks, issues, decisions, dependencies, and action items related to audits.
• Provide updates on compliance status through meetings and reporting.
• Build and maintain collaborative relationships with Finance, Risk, Compliance, and Legal departments.
• Requirements:
• 2 to 4 years of experience in Information Security, Cybersecurity, IT, Computer Science, or Information Systems.
• Understanding of audit and compliance methodologies and relevant frameworks.
• Effective communication skills for audit planning and stakeholder updates.
• Experience in designing and delivering audit-related training.
• Ability to track and document audit-related risks and action items.
• Strong collaboration skills across multiple departments.
• Knowledge of information security laws, regulations, and best practices.
• Excellent verbal and written communication skills.
• Ability to work independently and in fast-paced settings.
• Professional skepticism in evaluating information security controls.
• Bachelor’s degree in a relevant field.
• Certifications such as CISA, CISM, or Security+ are desired.
• Pay Range and Compensation Package:
• The estimated base salary range is $77,200 to $96,500 annually, subject to factors including location, experience, and certifications.
• Some positions may be eligible for additional variable incentive compensation.
• Benefits & Perks:
• Health, Dental, and Vision insurance.
• 401(k) plan with company matching.
• Paid maternity and paternity leave.

Equal Opportunity Statement: Our client is an equal opportunity employer. They celebrate diversity and are committed to creating an inclusive environment for all employees. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, or national origin. Note RemoteHunter is not the Employer of Record (EOR) for this role. Our purpose in this opportunity is to connect exceptional candidates with leading employers. We help job seekers worldwide discover roles that match their goals and guide them to complete their full application directly through the hiring company’s career page or ATS.