GRC / InfoSec Audit Analyst
Title: Governance, Risk and Compliance (GRC) Analyst InfoSec Audit
(On-Site 3x/Wk Deerfield Beach, FL)
Contract
Manager Notes:
Looking for GRC analyst who have audit experience
Would love someone coming out of a big 4 organization
If someone has lead a SOC 2 audit then they know what they are doing
NIST/ISO security control frameworks but any framework she said would do -
InfoSec control testing and audit explanations
Experience leading audits and responding to request of the auditors
Understanding how to articulate to the team what the need is from the auditor
Key Responsibilities
Lead and support internal and external SOC 2 audit processes If SOC 2 is hard to find let me know.
Assess InfoSec controls aligned with NIST, ISO 27001, or SOC frameworks
Collaborate with InfoSec, IT, and business stakeholders to prepare evidence and articulate control intent
Coordinate audit readiness, remediation tracking, and audit responses
Produce clear audit narratives and speak confidently about findings to leadership
Required Skills
SOC 2 audit experience (planning, evidence collection, reporting)
Familiarity with NIST/other security frameworks (NIST CSF, ISO)
Experience with assessing and documenting security controls
Strong communicator with ability to articulate risk and auditor expectations
GRC tool experience (Archer, RSA, MetricStream, etc.)
Never miss an opportunity! Create an alert based on the job you applied for.
