Client: LockThreat
Please Note: Prefer candidates with experience in top-tier consulting firms (e.g., Accenture or similar organizations).
Job Title: GRC Analyst (Governance, Risk & Compliance)
Location: Atlanta, GA (Hybrid 3 Days Onsite / 2 Days Remote)
Job Summary
We are seeking a mid-level GRC Analyst with strong client-facing experience to support governance, risk, and compliance initiatives across enterprise environments. The ideal candidate will have prior experience working with large consulting firms and be comfortable engaging directly with stakeholders, managing compliance programs, and driving risk management activities.
This role requires a professional who can confidently represent the team in front of clients, understand business and regulatory requirements, and translate them into actionable security and compliance controls.
Key Responsibilities
Act as a primary point of contact for clients on GRC-related activities
Support and manage governance, risk, and compliance programs
Conduct risk assessments, gap assessments, and control evaluations
Assist in the implementation and monitoring of security controls and policies
Ensure alignment with industry standards and regulatory frameworks
Prepare and present reports, dashboards, and compliance documentation to stakeholders
Coordinate with internal teams to address audit findings and remediation efforts
Support internal and external audits, including evidence collection and validation
Maintain and update policies, procedures, and compliance documentation
Provide recommendations to improve risk posture and compliance maturity
Required Skills & Qualifications
4–8 years of experience in GRC, risk management, or compliance roles
Prior experience working in top-tier consulting environments (e.g., large global consulting firms)
Strong client-facing and stakeholder management skills
Experience with risk assessments, audits, and compliance reporting
Strong understanding of common security and compliance frameworks, such as:
ISO 27001
NIST
SOC 2
GDPR (or similar regulatory standards)
Hands-on, in-depth experience with at least one GRC platform (RSA Archer or ServiceNow GRC) – configuration, workflow management, reporting, and day-to-day operations
Ability to communicate effectively with both technical and non-technical stakeholders
Strong documentation, reporting, and presentation skills
Preferred Qualifications
Experience working with enterprise clients in a consulting or advisory capacity
Exposure to multiple compliance frameworks and regulatory environments
Relevant certifications such as:
CISA
CISM
CRISC
ISO 27001 Lead Implementer/Auditor
Never miss an opportunity! Create an alert based on the job you applied for.
