Position Summary
Yearling Solutions is seeking an experienced Cybersecurity GRC Training Analyst to serve as a consultant supporting a large enterprise client''s Cybersecurity Governance, Risk, and Compliance (GRC) training initiatives. In this consulting capacity, the analyst will embed with the client''s cybersecurity team to align GRC strategy with an existing application developer training program, assess current training scope, processes, and tooling, and recommend future-state improvements to drive efficiency and effectiveness.
This role is a consulting engagement managed through Yearling Solutions. Responsibilities are limited to analysis, program support, and coordination activities and do not include ownership of training content development, compliance determinations, system administration, or final business decisions, which remain the responsibility of the end client.
Key Responsibilities
Program Alignment & Assessment
• Align cybersecurity and GRC strategy with the client''s application developer training program.
• Assess current training scope, processes, and tooling to identify gaps and improvement opportunities.
• Develop recommendations for future-state training improvements to drive efficiency and effectiveness.
Vendor Evaluation & Onboarding Support
• Support evaluation and selection of third-party cybersecurity training vendors on behalf of the client.
• Research vendors, define evaluation criteria, and prepare comparison materials.
• Assist with coordinating vendor onboarding activities and producing onboarding support documentation.
Training Assignment & Tracking
• Define processes for identifying, assigning, and tracking training completion.
• Collaborate with client teams to document training assignment and participation workflows.
• Support monitoring of training completion metrics across relevant populations.
Reporting & Dashboard Visibility
• Collaborate with client teams to enable automated reporting and dashboard visibility for training metrics.
• Produce reporting and automation support artifacts to enhance training program transparency
Required Qualifications
• 5+ years of experience in cybersecurity, GRC, or related training/program coordination roles.
• Demonstrated familiarity with cybersecurity governance frameworks (e.g., NIST CSF, ISO 27001, CIS Controls).
• Experience with enterprise training program management, including LMS platforms and training lifecycle processes.
• Ability to assess current-state processes and develop clear, actionable future-state recommendations.
• Strong analytical and documentation skills with experience producing deliverables for senior stakeholders.
• Excellent written and verbal communication skills; ability to coordinate across multiple cross-functional teams.
• Comfort operating in a client-facing consulting environment with professionalism and discretion
Preferred Qualifications
• Experience supporting vendor selection processes, including RFP/RFI coordination and evaluation frameworks.
• Familiarity with automated reporting tools and dashboard platforms (e.g., Power BI, ServiceNow, Tableau).
• Prior experience in an enterprise or Fortune 500 environment.
• Relevant certifications such as CISM, CRISC, Security+, or equivalent GRC/cybersecurity credentials.
• Experience with application developer security training programs or secure coding awareness initiatives
Disclaimer: i-Link Solutions Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable federal, state and local laws. We especially invite women, minorities, veterans, and individuals with disabilities to apply. EEO/AA/M/F/Vet/Disability.
Never miss an opportunity! Create an alert based on the job you applied for.
