Genesis10 is currently seeking a GRC Analyst for a hybrid position with a Major Insurance Company located in Fort Worth, TX . This is a 6+ month contract to hire opportunity. The Senior GRC Analyst is an experienced individual contributor within the IT Security function responsible for advancing Amynta's governance, risk management, and compliance (GRC) program. This role independently executes information security risk assessments, control oversight, and support for regulatory, audit, and customer assurance requirements.
This is a Hybrid schedule with 3 days in Fort Worth, TX office on a set schedule.
Responsibilities: - Independently assess, analyze, and document information security risks across systems, applications, and technologyenabled processes using a riskbased approach.
- Support and maintain the information security governance framework, including policies, standards, procedures, and control documentation.
- Assess the design and operating effectiveness of security controls and provide riskbased recommendations to Information Security leadership.
- Monitor and report on adherence to internal security policies and applicable regulatory and contractual requirements.
- Identify, track, and report control deficiencies and policy violations; partner with stakeholders to drive corrective actions.
- Support internal and external audits, regulatory examinations, and customer assurance activities, including evidence coordination, audit responses, and remediation tracking.
- Provide governance and coordination support for SOC 2 Type 2 assurance activities, including control readiness, internal testing, and auditor engagement.
- Develop and maintain a centralized security knowledge base to streamline customer, partner, and duediligence responses.
- Execute security awareness and training activities, including platform administration and phishing simulations.
- Partner with IT, Legal, and business stakeholders to ensure security requirements are understood and incorporated into relevant processes.
- Support the development and implementation of the IT vendor risk management program, including thirdparty risk assessments and vendor risk tracking.
- Contribute to continuous improvement of GRC processes, tooling, and reporting.
- Perform other duties consistent with the scope of the role.
- Assess and evaluate information security risks
- Create and document processes in response to risks where required
- Monitor computer networks, systems, and incoming emails for threats and security breaches
- Install, configure, and update security software
- Test systems for potential vulnerabilities and perform penetration testing
- Develop systems and processes for security best practices
- Prepare reports on security incidents and log responses to maintain compliance
- Assist leadership with creating the framework for information security governance and compliance
- Develop and maintain security policies and procedures
- Train users and promote security awareness to ensure system and data security
Qualifications: - Must reside within a reasonable commuting distance of the Fort Worth office.
- Bachelor's degree in Information Systems, Information Security, Risk Management, Cybersecurity, or a related discipline; equivalent practical experience may be considered.
- 4-7 years of progressively responsible experience in information security, governance, risk and compliance (GRC), risk management, compliance, audit, or related IT security functions.
- Proven experience supporting security, IT, or compliance audits (e.g., SOC, ISO, internal audit, regulatory examinations), including audit readiness, evidence collection, and remediation tracking.
- Experience assessing information security risks, evaluating control effectiveness, and identifying compliance gaps.
- Working knowledge of common security frameworks and regulatory standards such as NIST, ISO 27001, SOC, NYDFS Part 500, PCI-DSS, or similar frameworks.
- Strong analytical, problem-solving, and organizational skills with the ability to manage multiple priorities independently.
- Ability to communicate technical security concepts clearly to non-technical stakeholders and business leaders.
- Excellent written and verbal communication skills, including clear and concise documentation.
- Ability to work independently in a fast-paced environment with strong attention to detail.
- Sound professional judgment and discretion when handling sensitive or confidential information.
- Collaborative mindset with the ability to influence cross-functional stakeholders without direct authority.
- Professional certifications such as CISA, CRISC, CISSP, or ISO 27001 are preferred, but not required.
- Minimum of 3 years of experience in computer-related security
- Experience in computer operations and security within the financial/insurance industry is preferred
- Broad understanding of security technologies including firewalls, proxies, SIEM, antivirus software, and IDPs
- Experience with incident response, vulnerability management, and overseeing a SOC team
- Experience performing security reviews of hardware, applications, and software
- Familiarity with security tools such as Microsoft Defender/XDR, Sentinel, AlertLogic, Crowdstrike Falcon, Rapid7 Insight VM, Abnormal Security, Burp Suite, or KnowBe4
- In-depth knowledge of network protocols, operating systems, and common security vulnerabilities
- Strong verbal and written communication skills
- Ability to work independently and prioritize tasks in a fast-paced environment
- Applicants must be authorized to work for ANY employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time
- Under the guidance of Information Security leadership, this senior technical role is responsible for planning, developing, and maintaining security programs, policies, and procedures.
- The ideal candidate will help mature the organization's security program by addressing risks, managing vulnerabilities, and improving overall security posture.
- This position requires strong communication skills and the ability to manage multiple security responsibilities in a growing environment.
- Only candidates available and ready to work directly as Genesis10 employees will be considered for this position.
Pay range: $60 - $70 per hour If you have the described qualifications and are interested in this exciting opportunity, please apply! Ranked a Top Staffing Firm in the U.S. by Staffing Industry Analysts for six consecutive years, Genesis10 puts thousands of consultants and employees to work across the United States every year in contract, contract-for-hire, and permanent placement roles. With more than 300 active clients, Genesis10 provides access to many of the Fortune 100 firms and a variety of mid-market organizations across the full spectrum of industry verticals.
For contract roles, Genesis10 offers the benefits listed below. If this is a perm-placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10: - Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
- The opportunity to have a career-home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
- Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
- Behavioral Health Platform
- Medical, Dental, Vision
- Health Savings Account
- Voluntary Hospital Indemnity (Critical Illness & Accident)
- Voluntary Term Life Insurance
- 401K
- Sick Pay (for applicable states/municipalities)
- Commuter Benefits (Dallas, NYC, SF, and Illinois)
For multiple years running, Genesis10 has been recognized as a Top Staffing Firm in the U.S., as a Best Company for Work-Life Balance, as a Best Company for Career Growth, for Diversity, and for Leadership, amongst others. To learn more and to view all our available career opportunities, please visit us at our website.
Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
Never miss an opportunity! Create an alert based on the job you applied for.