Senior GRC Analyst
Gilder Search Group
The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a risk focused, highly analytical role that ensures all human and third‑party risk to Clayco is identified, quantified, documented, and treated to an acceptable level across the Clayco organization. This role will assume ownership of the Third-Party Risk Management (TPRM) process to gather details on the security practices and compliance levels for each third‑party being considered or contracted for a solution or services to assess the potential for compromise due to a control gap or exploitable misconfiguration as well as non‑compliance with legal and regulatory requirements. Additional contribution will be expected for internal assessments and third‑party audits to gather and submit discovery and transactional responses and artifacts. The Sr. GRC Analyst will also assume ownership of Human Risk Management (HRM) including the delivery of comprehensive security awareness education, the end‑to‑end execution of phishing simulation programs, and the technical maintenance and life‑cycle management of security awareness platforms. Beyond simple training, the position focuses on Human Risk Management (HRM), using data‑driven insights to identify high‑risk user groups and implementing targeted interventions to proactively mitigate human‑centric threats to cultivate a security‑first culture internally through education and behavioral change. Additional responsibilities will be assigned as deemed necessary. Any travel is usually planned in advance, but issues may arise which warrant immediate travel to one or more satellite locations. The Specifics of the Role Assumes operational ownership of the 3rd Party Vendor Risk Management program identifying, assessing, and mitigating risks associated with external vendors, suppliers, and service providers Conducts due diligence on new and existing vendors by reviewing security questionnaires, SOC reports, compliance certifications, and other supporting attestations Captures, analyzes, and recommends treatment, assignment, and tracking of identified issues Collaborates with legal and stakeholder teams to ensure contracts include specific clauses for data protection, service‑level agreements (SLAs), and AI governance Documents and communicates all relevant findings and recommendations to stakeholders Tracks, monitors, and reports on execution of remediation action plans and escalates inadequate responses or progress Assumes ownership of the Security Awareness program determining appropriate topics, themes, scopes, and timing of cyber awareness communications, events, and content delivery Conducts regular, simulated social engineering exercises to assess and improve employee recognition of real‑world attacks Develops engaging, simple materials—such as infographics, newsletters, and videos that translate complex technical risks into layman’s terms Maintains Security Awareness training and simulation platforms to support content delivery and End User interaction, including support for any Client‑side functionality (i.e., "Report Phish" button) Plans, coordinates, and executes activities for Cybersecurity month Partners with Employee Relations, Legal, and Marketing to ensure security messaging is integrated into the broader corporate culture Tracks Key Risk Indicators (KRI's) such as actual phishing click-through rates, failed simulations, and missed training as well as Key Performance Indicators (KPIs) like suspicious email reporting, passed simulations, and successful training completion status to measure program effectiveness for leadership Requirements 6‑8+ years’ experience in Risk & Compliance Assessment, Audit & Reporting, or similar functions, preferably within the Information Security or Technology fields 3‑4+ years working specifically in Information Security roles involving Risk Analysis, Information System Security Assessment, and/or Security Awareness and Human Risk Management Bachelor’s degree in Information Technology or related field, or equivalent experience Required Certifications: Certified in Risk & Information Systems Control (CRISC), SANS Security Awareness Professional (SSAP), and Certified Third‑party Risk Professional Certification (CTPRP) (Current status, or obtained within 9 months of assuming role) Strong experience leveraging auditing principles and methods to evaluate policies, processes, systems, and vendors to identify business risks and control gaps Strong knowledge of Regulations, Frameworks, and Standards such as NIST 800-171/CSF/RMF, ISO27001, CIS Critical Security Controls, etc. Strong, technical knowledge of modern Systems, Services, Cloud Applications/Platforms, Identity Services, and Data Storage/Handling and their areas of Risk and Threat exposure Experience with administering, maintaining, and leveraging a Risk Register to track and communicate identified Risk and its required remediation Knowledge of statistics, reporting and analytical tools to analyze and solve complex problems Proficiency in necessary productivity tools (i.e., Microsoft Excel, PowerPoint, Word etc.) for analytics and presentations Operate with strong integrity with ability to manage projects of a confidential nature Ability to translate technical or abstract concepts into a narrative that is easily understood Ability to thrive in fast‑paced environment. Some Things You Should Know This position is classified as a safety‑sensitive role in accordance with applicable state and federal laws. Candidates selected for this position will be subject to a comprehensive background check, which includes mandatory drug testing. Benefits Discretionary Annual Bonus: Subject to company and individual performance. Comprehensive Benefits Package Including: Medical, dental and vision plans, 401k, generous PTO and paid company holidays, employee assistance program, flexible spending accounts, life insurance, disability coverage, learning & development programs and more! Compensation The salary range for this position considers a wide range of factors in making compensation decisions including but not limited to: Education, qualifications, skills, training, experience, certifications, internal equity, and location. Compensation decisions are dependent on the facts and circumstances of each case. #J-18808-Ljbffr
- ...entertainment related building projects. The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk Register. This role is...SeniorFor contractorsImmediate startFlexible hours
- Gilder Search Group is looking for a Sr. GRC Analyst focused on Third-Party & Human Risk Management in St. Louis, Missouri. The role ensures all human and third-party risks to Clayco are identified and treated appropriately. Key responsibilities include owning the TPRM...Senior
- Sky Mavis is seeking a Senior GRC Analyst focused on Third-Party and Human Risk Management in St. Louis, Missouri. This role requires 6-8+ years of experience in Risk Assessment and Information Security, with strong analytical skills. You will lead the Vendor Risk Management...Senior
- Job Title Senior, Technology GRC Analyst Reports To Vice President, Technology Governance, Risk & Compliance FLSA Status Exempt Job Summary The Senior Technology GRC Analyst helps the organization understand and manage technology and information security risks before...SeniorWork at officeLocal areaRemote workFlexible hours
- Together Credit Union is seeking a Senior Technology GRC Analyst in St. Louis, MO, to oversee technology and cybersecurity risks. This role evaluates risk management, supports compliance, and helps enhance the overall control environment. The ideal candidate has at least...SeniorRemote jobFlexible hours
$77.2k - $96.5k
...Behind WWT's Resilient Future Step into a dynamic role as an Information Security (InfoSec) Governance, Risk, and Compliance (GRC) Analyst within Audit and Compliance, where you will be at the forefront of driving operational excellence within the Audit and...Permanent employmentFull timeH1bVisa sponsorshipShift work$100k - $179k
...About this role: Wells Fargo is seeking a Senior Risk Asset Review Specialist within Credit Risk as part of Corporate Risk. Learn more about the career areas and lines of business at wellsfargojobs.com ( . Credit Risk, which independently oversees the management...SeniorWork experience placementRelocation package- ...with applicable industry rules and regulations, and are consistent with the firm's mission and purpose. What You'll Do: The Senior Compliance Manager will review and provide the final principal approval of retail communications as well as internal training content...SeniorTemporary workWork at officeHome officeFlexible hours
- ...BJC Medical Group is hiring a Senior Compliance Coordinator in St. Louis, MO. This remote position involves reviewing specialty provider documentation for billing accuracy and developing educational materials. The ideal candidate will have 5-10 years of experience, a...SeniorRemote work
$99k - $164.8k
...A leading insurance provider has an immediate opening for a Senior Actuarial Analyst in St. Louis, MO. This position requires a skilled individual to perform complex pricing analyses and provide actuarial support. Candidates should have a thorough understanding of actuarial...SeniorImmediate startRemote work$95k - $125k
...United States. Position Overview: The Compliance Analyst (Portfolio Management & Trading) plays a hands-on, operational... ..., and escalating matters that require policy interpretation or senior review. Demonstrates the ability to collaborate effectively...SeniorLocal area$62k - $92k
Indeed is seeking a Legal Analyst - Contracts in St. Louis, MO. This role involves drafting, negotiating, and managing client agreements for public sector clients. The analyst will partner with departments to ensure compliance and mitigate risk throughout the contracting...Senior- ...Washington University seeks a full-time Business Analyst III for its IT department. This fully remote role requires strong analytical abilities to support technology initiatives and enhance business processes. The ideal candidate will analyze current states, collaborate...SeniorFull timeRemote work
$91k - $121k
Job Overview: The Senior Incentive Analyst is a hands-on role that will play a key part in managing and supporting ongoing incentive compensation needs. This individual will focus on the analysis, evaluation, creation, and implementation of compensation programs designed...SeniorTemporary workRelocationRelocation package- Spectrum Brands in St. Louis, Missouri, is looking for a Senior Regulatory Affairs Specialist to partner with various teams ensuring new innovations comply with regulations. This hybrid role allows for flexibility and requires effective communication and regulatory knowledge...Senior
- ...Ocean®, Marineland®, 8-in-1®, Dingo®, FURminator®, Nature's Miracle®, GloFish®, DreamBone® and SmartBones®. Job Summary As a Senior Regulatory Affairs Specialist for the Pet Care team in our Earth City, MO office, you will be partnering across marketing, R&D,...SeniorWork at officeWork from homeWorldwideMonday to Friday
- Spectrum Brands is seeking an Environmental, Health and Safety Manager for its Vinita Park Facility in Missouri. The successful candidate will manage and oversee safety and environmental compliance in alignment with local regulations while leading key initiatives and training...SeniorLocal area
$132.5k - $217k
...Senior Actuarial Analyst – Pricing Actuarial Team Zurich North America is seeking a Senior Actuarial Analyst to join the Pricing Actuarial Team. The role supports actuarial and underwriting leaders and is responsible for pricing Direct Markets accounts. Responsibilities...SeniorFull timeTemporary workApprenticeshipWork at officeRemote workVisa sponsorship- An established security consulting firm is seeking a dedicated professional for their Information Risk Management department in St. Louis, Missouri. The role involves conducting risk assessments, advising on security measures, and contributing to the development of corporate...Senior
- GreenGas is looking for a Contract Manager to oversee contract lifecycle management. This role involves managing contracts from initiation through execution, ensuring compliance, and improving contract processes. The ideal candidate will have a Bachelor's degree and over...SeniorContract workWork at office
- A leading beverage manufacturer in St. Louis is seeking a Senior Manager for Tax to oversee excise tax compliance across various business units. The role requires a Bachelor's degree in accounting or finance, ideally with a CPA/MBA, and 3+ years of tax accounting experience...Senior
- A leading construction firm is seeking a Safety Manager to oversee safety programs across various projects in North America. This role requires managing compliance with safety regulations, conducting audits, and training the workforce. The ideal candidate will possess a...Senior
$132.5k - $217k
Zurich North America is looking for a Senior Actuarial Analyst to join the Pricing Actuarial Team. This role involves supporting pricing decisions for Direct Markets accounts and conducting actuarial analyses. With a preference for hybrid presence in Schaumburg, this position...SeniorRemote job- Nidec Motor Corporation in St. Louis, Missouri is seeking a Manager of Trade Compliance to develop and execute foreign trade strategies while ensuring compliance with international regulations. The ideal candidate will have at least 7 years of experience in trade compliance...Senior
- ...A global engineering consultancy and manufacturing organization in St. Louis, MO is seeking a Senior People Technologies Analyst to support Workday HCM. In this full-time role, you'll design and implement HR processes, manage global projects, and ensure compliance with...SeniorFull time
- Midwest BankCentre, Inc in St. Louis is seeking a mortgage loan processor to prepare application documentation, analyze collateral, and ensure compliance with guidelines. The ideal candidate will have 5-7 years of experience in mortgage processing and strong communication...Senior
$75 - $87 per hour
Apex Systems is looking for a Senior Analyst in Radiology/PACS to join their team in St. Louis, MO. This role focuses on providing technical expertise and support in clinical imaging and PACS administration. Candidates should have 5-7 years of experience in Radiology PACS...SeniorRemote jobHourly pay- ...Senior Geoint Analyst Unlock the secrets of intelligence with MANTECH! Join a dynamic team at the forefront of national security, providing advanced solutions to government intelligence agencies. Since 1968, we've been solving the toughest challenges with groundbreaking...SeniorWork at officeLocal areaRemote work
- Bank of America in St. Louis, Missouri is seeking a detail-oriented professional to address research and adjustment inquiries. This role involves handling complex cases and ensuring efficient communication with clients and internal partners. The ideal candidate possesses...Senior
$75k - $90k
...Financial Analyst Is an active member on multiple employer client teams providing financial analyses, outputs and client deliverables across a region. Supports benefit plan analysis, design, cost avoidance, risk and funding strategies. Contributes to vendor financial reviews...SeniorFull timeTemporary workWork at officeLocal areaRemote workVisa sponsorshipWork visaFlexible hours
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior GRC Analyst. Be the first to apply!
- senior cloud service delivery manager Saint Louis, MO
- senior business analyst contract Saint Louis, MO
- senior product design engineer Saint Louis, MO
- senior game producer Saint Louis, MO
- senior software manager Saint Louis, MO
- senior marketing account manager Saint Louis, MO
- senior marketing manager Saint Louis, MO
- senior contracts analyst Saint Louis, MO
- sr operations manager Saint Louis, MO
- senior customer service manager Saint Louis, MO


