Genesis10 is currently seeking a GRC Specialist with a Major Financial Institution located in Charlotte, NC. This is a hybrid contract opportunity. Summary: As an Associate within GRC, you will play a vital role in protecting our client's information assets by conducting comprehensive risk assessments, collaborating with stakeholders, and driving process improvements. Reporting to the Head of Security Risk Assessments, you will help shape the bank's security risk management practices and ensure compliance with internal and external standards.
Responsibilities: - Perform information security risk assessments for new and existing SaaS and cloud-based solutions, client initiatives, and regulatory-driven requests
- Review and assess third party security postures by analyzing SOC 1 and SOC 2 reports, ISO 27001 certifications, penetration test summaries, SIG responses, and security questionnaires
- Evaluate SaaS architectures, data flows, and hosting models, with particular attention to data protection, encryption, identity and access management, logging, and monitoring
- Identify control gaps, assess both inherent and residual risk, and partner with stakeholders to define practical mitigation strategies or compensating controls
- Translate technical and operational risks into clear, business focused language that resonates with both technical and non technical audiences
- Collaborate regularly with IT, business, risk, and compliance teams to support timely, well informed decision making
- Support remediation efforts by tracking open issues, validating responses, and documenting outcomes through established governance processes
- Stay current with information security policies, standards, and procedures, and help stakeholders understand how changes may impact risk assessments
- Contribute to the ongoing improvement of risk assessment processes, templates, and tooling
Requirements: - Experience LevelMid (5-7 Years)
- 2-3 years of experience in banking, financial services, or another highly regulated environment
- Hands-on familiarity with cloud service providers such as AWS, Azure, or Google Cloud Platform, and an understanding of how SaaS applications are built on cloud infrastructure
- A solid foundation in information security principles, risk assessment concepts, and control-based evaluations
- Working knowledge of common security and regulatory frameworks, including NIST, NYDFS Cybersecurity Regulation, GLBA, ISO 27001, NIST CSF, and data privacy regulations such as CCPA/CPRA
- Basic understanding of enterprise systems, operating systems, databases, identity and access concepts
- Strong written and verbal communication skills, with the ability to explain security risk clearly and concisely
- Comfortable working independently while also collaborating effectively across technical and business teams
- Well-organized, detail-oriented, and able to manage multiple assessments and competing priorities
- A strong sense of ownership and follow-through
- Ability to track and maintain risk assessment data and metrics using tools such as Microsoft Excel, Jira, or similar platforms
Desired skills: - Experience supporting third party or vendor risk management programs
- Exposure to GRC platforms or security risk assessment tools
- Experience reviewing and interpreting SOC reports
- Current or in progress security certifications (e.g., CompTIA Security+, CompTIA Cloud+, AWS, Azure, Google Cloud Platform, CCSP, CRISC)
Pay range: up to $53.84 per hour
Only candidates available and ready to work directly as Genesis10 employees will be considered for this position.
If you have the described qualifications and are interested in this exciting opportunity, please apply! Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.
For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:
- Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
- The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
- Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
- Behavioral Health Platform
- Medical, Dental, Vision
- Health Savings Account
- Voluntary Hospital Indemnity (Critical Illness & Accident)
- Voluntary Term Life Insurance
- 401K
- Sick Pay (for applicable states/municipalities)
- Commuter Benefits (Dallas, NYC, SF, and Illinois)
For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.
Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Never miss an opportunity! Create an alert based on the job you applied for.