Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Contract Information Security GRC Analyst

Chatham Financial

Job Description:

Overview:

We don't simply hire employees. We invest in them. When you work at Chatham, we empower you - offering professional development opportunities to help you grow in your career, no matter if you've been here for five months or 15 years. Chatham has worked hard to create a distinct work environment that values people, teamwork, integrity, and client service. You will have immediate opportunities to partner with talented subject matter experts, work on complex projects, and contribute to the value Chatham delivers every day.

This role sits within theInformation Security Governance, Risk and Compliance (GRC) team, which reports directly into the CISO organization. The GRC team serves as the central function responsible for managing the enterprise's security risk posture, ensuring regulatory compliance, andmaintainingthe policy and control framework that governs information security across Chatham. This team works cross-functionally, partnering closely withProduct and Technology teamsto embed security into development and infrastructure initiatives,Human Resourcesfor security awareness and personnel security matters,Operationsfor business process alignment, and allChatham business unitsto ensure security requirements support businessobjectives. The team alsomaintainscritical relationships withOperational Riskto align cybersecurity risk management with enterprise riskframeworks andserves as the primary liaison toexternal auditorsfor SOC 2, regulatory examinations, and other assurance activities.

In this role you will:

The Information Security GRC Analyst with a Risk and Policy focusis responsible forassistingin the execution ofthe organization's security risk management program and supporting policy governance. This roletakes the lead in conductingthesecurityrisk assessments forChatham systems,vendorsand business processes. This roleis responsible formaintainingthetechnology and cybersecurity risks on the operationalrisk register; tracking issues andrisk mitigation activities; andsupportspolicy development.This role is also responsible for translatingtechnical risks into business-relevant recommendations,recommendingrisk-based decisions,documenting decisions onrisk treatment, tracking risk mitigationaction plans to completionandreviewing systems/processes forpolicy compliance.

  • Risk Assessment Execution: Conducttechnologyandsecurity risk assessments for internal systems, product and technologyprojects using established frameworks (NIST SP 800-30, ISO 27005, etc.)

  • Technology and CybersecurityRisk Register Management: Maintainthe technologyrisk register(includes Cybersecurity)documenting threats, vulnerabilities, impacts, likelihood, risk ratings, and treatment decisions; ensure consistent updates with stakeholder input

  • Technology and CybersecurityRisk Mitigation Tracking: Document risk treatment plans with action items, responsible parties, and target dates; track remediation progress; verify risk reduction upon closure

  • Technologyand CybersecurityPolicy Support: Support policy lifecycle activities including drafting, review, and updates; ensure policies alignment based on industry standards such as NIST, ISO 27001, etc.,

  • Cybersecurity and Information SecurityRisk MetricsDevelopment: Develop and report risk metrics and KRIs; analyze trends in risk posture;identifysystemic issues requiring management attention

  • Technology and CybersecurityRiskReporting/Communication: Translate technical risk findings into business-relevant language; prepare risk summaries for management review and decision-making

  • Stakeholder Engagement: Partner withcontrol owners,system owners, product team, technologyteamandbusiness stakeholders toidentifyand assess risks throughout the system lifecycle.

Your impact:

Success in this role requires strong collaborative relationships across Chatham. TheInformation Security GRCAnalyst partners closely with theManager of Information Security GRC,and Information Security leadershipto align risk priorities with security strategy. The analyst will interact on a regular basiswithtechnology and information security control owners to ensure controls areproperly designed, implemented, andmonitored.The analyst engages withOperational Riskto integratetechnology andcybersecurity risks intothe operationalrisk framework and reporting. Finally, collaboration withexternal auditorsduring SOC 2 and regulatory examinationsvalidatesthat risk management practices meet industry standards and client expectations.

Contributors to your success:

  • Bachelor's degree, preferablyin Information Security, Computer Science, Risk Management, or relatedexperience in the field.

  • 3-5+ years of experience in ITaudit, ITrisk management,executingsecurity assessments, orexperienceina relatedTechnology, IT Audit or DataGovernance,role.

  • Experiencein supporting/coordinating companySOC 2Trust Services Criteriaaudits or conducting SOC 2 audits.

  • Experience inconductingtechnology and securityrisk assessments using NIST, ISO 27005, or similar methodologies

  • Strong understanding ofCybersecurity risks and mitigation strategies as well asfunctional experience withthreat modeling, vulnerability analysis, and risk quantificationand follow through.

  • Knowledge of security frameworks: NIST CSF, NIST 800-53, ISO 27001, Center of Internet Security (CIS),SOC 2Trust Services Criteria,Cloud Control Matrix (CCM)

  • Knowledge ofthird-party security assessmentsand/or data protection/impact assessments.

  • Excellent analytical and written communication skills

  • Certifications preferred: CRISC,CDPSE,CISA, CISSP, ISO 27001 Lead Auditor/Lead Implementer

  • Other Certificationsconsidered:CGEIT, CCSK,CompTIA Security+, CompTIACySA+, CISSP-Associate, GIAC/GSEC, PMP/CAPM, AWS Cloud Practitioner, Azure Cloud Practitioner

* This is a contract position working 40 hours a week

About Chatham Financial:

Chatham Financial is the leading independent capital markets advisor, delivering an integrated blend of expert advice and powerful technology to help you reduce risk and seize opportunity. With decades of capital markets strategy, execution, monitoring, and performance expertise, we serve as an unwavering advocate for your best interests and your innovation partner. Our technology platform unifies data across assets, debt, and derivatives, giving you unmatched agility, transparency, and insight.

It's clear ahead.

Our commitment is to carry that light forward in every partnership, every solution, and every market we serve.

We help guide the way-giving clients the insight and momentum to move forward with confidence, no matter what lies ahead.

Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Contract Information Security GRC Analyst in Kennett Square, PA vacancy
  •  ...Overview Information Security Governance, Risk and Compliance (GRC) Analyst – Risk and Policy focus. Responsibilities Assist in the execution of the organization’...  ...AWS Cloud Practitioner, Azure Cloud Practitioner. Contract Information This is a contract position working... 
    Contract work

    CFC- Chatham Financial Corporation

    Kennett Square, PA
    1 day ago
  • CFC- Chatham Financial Corporation is seeking an Information Security Governance, Risk and Compliance Analyst with a Risk and Policy focus. You will be responsible...  ...in security frameworks like NIST and ISO. This contract position requires 40 hours of work per week. #J-1... 
    Contract work

    CFC- Chatham Financial Corporation

    Kennett Square, PA
    3 days ago
  • Corporation Service Company in Wilmington is seeking a Senior Information Security Analyst to join its IT risk oversight team. This critical role focuses on managing risks related to Technology, Data, Cyber, and AI within financial services. The successful candidate will... 
    Suggested

    Corporation Service Company

    Wilmington, DE
    4 days ago
  • The Information Technology Risk Oversight (ITRO) function, within CSC Legal, Risk & Compliance...  ...the addition of a Senior Information Security Analyst. This role is a key component of the...  ..., tracked and remediated in CSC global GRC tool. Participate and drive the development... 
    Suggested
    Full time

    Corporation Service Company

    Wilmington, DE
    5 days ago
  •  ...contacted We are seeking a highly motivated GRC Analyst to support the modernization and...  ...within GRC tooling Partner with Risk, Security, Compliance, and IT stakeholders to translate...  ...GRC, Risk Analysis, IT Compliance, or Information Security Experience supporting GRC... 
    Contract work
    Local area

    Liberty Personnel Services, Inc.

    Wilmington, DE
    5 days ago
  • $50 - $60 per hour

     ...Financial Accounting, Investment Banking, Corporate Development, Wealth Management, and Insurance Planning.   Advantages of contracting with us: You'll be able to choose which projects you want to work on and when You work on your own schedule, on your own computer... 
    Contract work
    Hourly pay
    For contractors
    Work experience placement
    Remote work

    Data Annotation

    Hockessin, DE
    3 days ago
  • $50 - $60 per hour

     ...Financial Accounting, Investment Banking, Corporate Development, Wealth Management, and Insurance Planning.   Advantages of contracting with us: You'll be able to choose which projects you want to work on and when You work on your own schedule, on your own computer... 
    Contract work
    Hourly pay
    For contractors
    Work experience placement
    Remote work

    Data Annotation

    Hockessin, DE
    1 day ago
  • Liberty Personnel Services, Inc. is seeking a motivated GRC Analyst in Wilmington, Delaware, to support the modernization of the Governance, Risk, and Compliance program. The ideal candidate will drive migration from the current Archer platform to a new GRC solution, design... 

    Liberty Personnel Services, Inc.

    Wilmington, DE
    5 days ago
  • $86k

     ...000 / YEAR System Freight, Inc. (SFI) - a premier, dedicated contract trucking and logistics company, established in 1975, has full-...  ...acceptable MVR & criminal background need apply. For more information about SFI and other career opportunities available, visit us today... 
    Contract work
    Weekly pay
    Full time
    Local area

    SYSTEM FREIGHT

    Avondale, PA
    10 hours ago
  • $86k

     ...000 / YEAR System Freight, Inc. (SFI) - a premier, dedicated contract trucking and logistics company, established in 1975, has full-...  ...acceptable MVR & criminal background need apply. For more information about SFI and other career opportunities available, visit us today... 
    Contract work
    Weekly pay
    Full time
    Local area

    SYSTEM FREIGHT

    Mendenhall, PA
    11 hours ago
  • $43k - $82.59k

     ...your time You will operate Excel and UMB accounting systems to perform general ledger accounting functions, enter trade information, price securities, and reconcile accounts. You will ensure data accuracy and prepare client financial statements and reports to share... 
    Local area
    Flexible hours

    UMB Bank

    Chadds Ford, PA
    2 days ago
  • $22 per hour

     .... No.: 1259883-55 BC: #DTG180 Company: Delta-T Group, Inc. Contract Contact: PA EDU - Delaware County Office Email: PAEduContracts...  ...the betterment of those needing care and support. Additional Information Candidates replying to this role usually have experience or... 
    Contract work
    Long term contract
    Temporary work
    For contractors
    Work at office
    Monday to Friday

    Delta-T Group

    Chadds Ford, PA
    1 day ago
  • $20.25 per hour

     ...Security Shift Supervisor | $20.25/HR Company Overview DSI Security Services is a leading provider of contract security solutions, serving clients across multiple industries nationwide. Founded on the principle of DWYSYWD - "Do What You Say You Will Do," DSI... 
    Contract work
    Currently hiring
    Shift work

    DSI Security

    West Chester, PA
    4 days ago
  •  ...Job Title: Security & Law Enforcement (Master-at-Arms) Category / Component: Enlisted Active Overview Master-at-Arms...  ...It does not replace official Navy instructions, policies, or contracts and does not guarantee specific assignments, training, incentives... 
    Apprenticeship
    Overseas
    Night shift
    Rotating shift

    US Navy

    Kennett Square, PA
    3 days ago
  • $95k - $110k

     ...active implementation phases and ongoing multi-year maintenance contracts. As a key member of the Program Management Office (PMO), you...  ...Solutions values and applicable law, we provide the following information to promote pay transparency and equity. Pay within this range... 
    Contract work
    Ongoing contract
    For subcontractor
    Work at office
    Relocation
    Home office
    Flexible hours

    Motorola Solutions

    Wilmington, DE
    1 day ago
  • $120k

     ...Medical and pregnancy-history review, then clinic screening. 4. Matching with intended parents. 5. Independent legal review and contract. 6. Embryo transfer, pregnancy support, delivery, and post-journey wrap-up.   Eligibility basics to include: - Prior... 
    Contract work

    Patriot Conceptions

    Toughkenamon, PA
    3 days ago
  • $4,000 - $6,000 per week

     ...a percentage-based pay structure.*$2,000 Sign-On Bonus: Four installments of $500 after completing 30, 60, 90, & 120 days of your contract.Average Gross Revenue Per week: $4,000- $6,000Fuel Surcharges Paid: Receive 100% of any fuel surcharges paid to TransAm for shipments... 
    Contract work
    For contractors
    Local area
    Relocation package
    Flexible hours

    TransAm Trucking

    Unionville, PA
    1 day ago
  •  ...Review progress and final project drawings and specifications to ensure quality of delivery and compliance with code requirements and contract documents; Lead design review process with all stakeholders, relying on knowledge of regulatory agency codes, standards and... 
    Contract work
    For contractors
    For subcontractor
    Work at office
    Monday to Friday
    Shift work

    Direct Jobs

    Wilmington, DE
    2 days ago
  • A consulting firm is seeking a Pega Lead Business Analyst for contract work in Wilmington, DE. The role requires extensive IT and financial industry knowledge, with expertise in Pega methodologies. Candidates must show proven ability to manage large-scale systems and effectively... 
    Contract work

    E-Pro

    Wilmington, DE
    4 days ago
  • A leading contractor specializing in secure and institutional environments is seeking an experienced Project Manager to oversee the planning...  ...security systems, detention hardware, and public-sector contracts. Responsibilities Serve as the primary representative to owners... 
    Contract work
    For contractors
    For subcontractor

    Synerfac Technical Staffing

    Thornton, PA
    2 days ago
  • $100k - $175k

     ...accurate packages Buy out job, award to subcontractors and manage contract process Interested in hearing more? Easy Apply now by...  ..., age (40 and over), disability, military status, genetic information or any other basis protected by applicable federal, state, or... 
    Contract work
    For subcontractor
    Local area

    Jobot

    West Chester, PA
    3 days ago
  •  ...Job Summary: Provide security detail as outlined in the post orders and establish working relationships with customers, local law...  ...proactive in knowing all revisions to post orders and general information distributed by the customer and AFS. Patrol physical property... 
    For contractors
    Local area

    Andy Frain

    Toughkenamon, PA
    1 day ago
  •  ...Outstanding long-term contract opportunity! A well-known Financial Services Company is looking for a Paralegal in Wilmington, DE (Hybrid). Work with the brightest minds at one of the largest financial institutions in the world. This is a long-term contract opportunity... 
    Contract work
    Long term contract
    Full time

    Motion Recruitment

    Wilmington, DE
    1 day ago
  • $35 - $40 per hour

     ...experienced Accounts Payable Analyst for an immediate start. This...  ...the ground running. Contract AP Analyst Manufacturing (Onsite...  ...read our Candidate Privacy Information Statement, which explains how...  ...state, and local laws and/or security clearance requirements,... 
    Contract work
    Weekly pay
    Full time
    Local area
    Immediate start

    LHH

    Kennett Square, PA
    2 days ago
  •  ...for facility accounting, budget, payroll, resources management, contract management and employee travel. To qualify for this position,...  ...for operation and administration of the agency. For more information on these qualification standards, please visit the United States... 
    Contract work
    Work at office

    VETERANS HEALTH ADMINISTRATION

    Wilmington, DE
    13 hours ago
  • $50 - $60 per hour

     ...management A current, in progress, or completed Masters and/or PhD is is preferred but not required Note: Payment is made via PayPal. We will never ask for any money from you. PayPal will handleany currency conversions from USD. This is an independent contract position.... 
    Contract work
    Hourly pay
    Full time
    Part time
    Work experience placement
    Remote work

    Data Annotation

    Downingtown, PA
    3 days ago
  •  ...Date 2026-04-30 Position Title Actuarial Analyst III Location This role requires...  ...limited to: Analyzes and implements risk contracts including conducting experience analyses...  ..., creed, disability, ethnicity, genetic information, gender (including gender identity and gender... 
    Traineeship
    Work at office
    Local area
    2 days per week
    1 day per week

    Elevance Health

    Wilmington, DE
    5 days ago
  • $18 - $20 per hour

     ...Human Resources Management Role: Help Desk Specialist Long Term Contract The Help Desk Specialist is responsible for providing advanced...  ...Seniority level Associate Employment type Contract Job function Analyst Industries IT Services and IT Consulting This range is provided... 
    Contract work
    Long term contract
    Shift work

    Quantum World Technologies Inc.

    Wilmington, DE
    5 days ago
  •  ...Financial Administrator. Support the Accounting and Operations teams in the areas of Accounts Receivable, Accounts Payable, and Contract Administration. Monitor compliance with contract requirements, certificates of insurance, and lien waivers. Manage... 
    Contract work
    Full time
    Temporary work

    Bancroft Construction Company

    Wilmington, DE
    1 day ago
  •  ...throughout Delaware County, PA. We have full-time, part-time, and contract/per-diem positions available. In Person Cases Available....  ...Therapist ~*1099 Contractor or W2 Position* ~ Pay is negotiable upon experience For more information, please go to:... 
    Contract work
    Daily paid
    Full time
    Part time
    For contractors

    Discovery Therapy

    Wilmington, DE
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Contract Information Security GRC Analyst. Be the first to apply!