GRC Security Analyst

Overview

On Site
Accepts corp to corp applications
Contract - Term Contract

Skills

risk management
GRC
HIPAA
ITGC Controls
PCI DSS

Job Details

Hi ,

Our client is looking GRC Security Analyst For Contract project in Winston Salem NC Locals only below is the detailed requirements.

Kindly share your Updated Resume to proceed further.

Job Role: GRC Security Analyst

Location: Winston Salem NC Locals only

Mode of Hiring: Contract

Job Description:

We are seeking a highly experienced GRC (Governance, Risk, and Compliance) Security Analyst to join our IT Security & Compliance team. The ideal candidate will be responsible for supporting the organization's security strategy and enhancing its overall security and risk posture. This position plays a key role in aligning IT operations with compliance and regulatory requirements such as SOX, GLBA, GDPR, HIPAA, PCI DSS, and more.

Key Responsibilities:

  • Serve as a GRC subject matter expert across security, risk, and compliance domains.
  • Implement and maintain IT General Controls (ITGC) to ensure compliance with regulatory standards.
  • Support the planning, development, and maintenance of security policies, standards, and procedures.
  • Collaborate with internal teams to monitor and enforce IT compliance requirements.
  • Act as the liaison for internal and external audit engagements, supporting evidence collection and remediation efforts.
  • Evaluate current controls and identify risks, gaps, or non-compliance issues.
  • Drive remediation initiatives and track progress until closure.
  • Maintain knowledge of current and emerging security and compliance trends.
  • Ensure documentation and reporting related to GRC processes are up to date and audit-ready.

Required Skills & Qualifications:

  • Bachelor's degree in Computer Science, Information Systems, Cybersecurity, or a related field with minimum 12+ Years of relevant experience.
  • 5+ years of experience in information security, IT risk management, or IT compliance.
  • Strong knowledge and hands-on experience with ITControls.
  • Deep understanding of compliance frameworks such as SOX, GLBA, HIPAA, GDPR, PCI DSS.
  • Experience working with GRC tools and systems (e.g., Archer, ServiceNow GRC, MetricStream a plus).
  • Excellent problem-solving, documentation, and communication skills.
  • Ability to work independently and handle multiple priorities in a fast-paced environment.
Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.