GRC Security Analyst II
Dormont Manufacturing Co
Security Analyst II (Governance & Risk) Essential Utilities, Inc. delivers safe, clean, reliable services that improve the quality of life for individuals, families, and entire communities. Operating as the Aqua (water and wastewater services) and the Peoples and Delta (natural gas) brands, Essential serves approximately 5.5 million people across 10 states. We are committed to sustainable growth, operational excellence, a superior customer experience, and premier employer status—including a competitive and comprehensive benefits package and a commitment to career growth opportunities. The primary responsibilities of the Security Analyst II (Governance & Risk) are to ensure the security and integrity of the organization’s information systems, focusing on risk and vulnerability management as well as security compliance. The Analyst frequently engages with technical teams and business process owners to analyze risk, communicate risk posture, and develop effective remediation strategies. Essential Duties: Manage execution of enterprise-wide and focused risk, threat, and vulnerability assessments, including Security Awareness, Vulnerability, Configuration, and Third-Party Assessments. Analyze and prioritize risk, vulnerability, and compliance findings to define remediation priorities, partnering with technology and business stakeholders to implement remediation plans. Define and manage qualitative and quantitative metrics and reporting to measure the success of vulnerability, third‑party, security awareness, configuration, and asset‑management remediations. Lead ongoing vulnerability management processes, including preparing remediation plans, tracking progress, and reducing overall vulnerability exposures. Participate in development, implementation, and operation of control and compliance frameworks based on ISO 27001/27002, NIST 800‑30, Cyber Security Framework/CSF, COBIT, Critical Security Controls, and CIS Configuration Benchmarks. Monitor compliance with security configuration standards for servers, endpoints, software, and networking platforms based on CIS Benchmarks. Work closely with IT, development, and operations teams to integrate security practices into the software development lifecycle (SDLC) and IT operations. Lead or assist with vendor and third‑party risk assessments. Create and maintain documentation of security solutions, services, configurations, and processes. Collaborate with intrusion detection, incident response, and security operations teams to manage risk related to existing and emerging threats. Analyze, process, integrate, communicate, and respond to threat intelligence. Participate in or lead development, improvements, and updates to continually enhance security controls, policies, guidelines, processes, and procedures. Develop and deliver security awareness training programs for employees to embed security best practices in corporate culture. Lead the operation of the security awareness program to ensure ongoing integration of security and risk management into corporate culture. Implement and maintain controls for compliance and privacy; act as liaison to internal and external audit teams as needed. Provide escalation support for the Information Technology Help Desk as required. Work off‑hour maintenance windows and participate in rotating on‑call shifts periodically. Work independently or as part of a team. All other duties as assigned by management. Minimum Qualifications: Bachelor’s degree in Information Technology, Computer Science, Cyber Security, Security and Risk Analysis, or Information Assurance. 3–5 years of Governance & Risk experience. Minimum of one of the following certifications or requirement to obtain within 12 months: CISSP, GIAC (GSEC, GSNA), CRISC, CISA, CISM, CCSP, SSCP, CAP, CSSLP, CSX Practitioner. Knowledge, Skills, and Abilities: Experience with assessment tools such as Qualys Policy Compliance and CIS‑CAT. Experience with vulnerability management platforms (Qualys or others) across multiple modules: Vulnerability Management, Policy Compliance, Continuous Monitoring, Web Application Scanning, and Asset Management. Experience leading security awareness program development. GRC platform experience and RSA Archer knowledge are strong positives. Strong written and verbal communication skills; works directly with technical teams and business stakeholders. Demonstrated organizational skills, multi‑tasking, prioritization, and delegation. Strong analytical skills for assessing and prioritizing security risks. Ability to foster a security‑conscious culture. Adaptability to evolving threats, technologies, and organizational needs. Understanding of integrating security into project and application lifecycles for enterprise IT systems. 3–5 years of experience in IT focusing on information security auditing, risk analysis, and vulnerability management. General security knowledge of Active Directory, database platforms, web server platforms, middleware, PKI, cloud computing, Office 365, and Azure. Experience with statistical, quantitative, and qualitative analysis techniques. Proactive approach to staying informed on security threats, vulnerabilities, and industry best practices. Equal Employment Opportunity/Affirmative Action Employer Essential Utilities, Inc. is an Equal Opportunity/Affirmative Action employer. Equal employment opportunity is provided to all employees and applicants without regard to the following legally protected characteristics: race, color, religion, sex, national origin, age, pregnancy (including childbirth and related medical conditions, including medical conditions related to lactation), physical or mental disability, covered‑veteran status, genetic information, sexual orientation, gender identity or expression, or any other characteristic protected by applicable local, state or federal law. Essential Utilities is committed to providing reasonable accommodation to individuals with disabilities. If you have a condition that may prevent you from applying for a job online or need to request an accommodation during the interview process, please call View phone number on click.appcast.io). To maintain the integrity of the recruitment process and avoid real or perceived conflicts of interest, specific guidelines apply to the hiring and assignment of family members and personal referrals, including but not limited to: Family members cannot result in a supervisor/subordinate reporting relationship; family members cannot work in the same department. #J-18808-Ljbffr Dormont Manufacturing Co
- Essential Utilities, Inc. Job Title: GRC Security Analyst II (Governance & Risk) Responsibilities Manage execution of both enterprise-wide and focused risk, threat, and vulnerability assessments, including but not limited to Security Awareness, Vulnerability, Configuration...SuggestedWork at officeLocal areaFlexible hoursRotating shift
- Aqua seeks a GRC Security Analyst II to ensure the security and integrity of information systems. Responsibilities include risk assessments, developing remediation plans, and ensuring compliance with best practices. The ideal candidate will have a Bachelor’s degree in Information...Suggested
- Aqua America, Inc. is hiring a GRC Security Analyst II responsible for managing risk assessments, developing security awareness programs, and ensuring compliance with security standards. The role requires a bachelor's degree in Information Technology or a related field,...Suggested
- ...Broad Overview We are looking for a detail-oriented IT security (cybersecurity) analyst to be responsible for desktop, mobile and network cybersecurity, troubleshooting incidents and implementing security policies and procedures. This individual will join an existing...SuggestedFor contractorsWork at officeImmediate startWork from home3 days per week
- Overview As a Security Governance Analyst, you will play a pivotal role in advancing the firm’s cybersecurity efforts. This role provides a unique... ...Power-user of Business Intelligence and/or Cybersecurity GRC tools a plus #J-18808-Ljbffr Susquehanna International GroupSuggested
- JPC Partners is looking for a Security Analyst. The Security Analyst will work with the Critical Infrastructure Protection (CIP) Compliance Department that is responsible for assisting in the development, coordination, monitoring, and communication of all applicable standards...
- ...Security Analyst Sonsoft, Inc. is a USA based corporation duly organized under the laws of the Commonwealth of Georgia. Sonsoft Inc. is growing at a steady pace specializing in the fields of Software Development, Software Consultancy and Information Technology Enabled...Permanent employmentFull timeH1b
- ...Services Department: Office of Billing Compliance Location: Philadelphia, PA Hours: M-F, 8 hr days, hybrid Summary The Compliance Analyst (CA) II is responsible for the performance of annual reviews of the professional fee billing for the faculty members of UPHS (HUP, PMC,...Work at officeLocal area
- A leading consulting firm is seeking a Security Analyst in Oaks, Pennsylvania, to support the Critical Infrastructure Protection Compliance Department. The role involves ensuring compliance with CIP standards through audits, documentation, and collaboration with stakeholders...
- ...Position Summary The Compliance Analyst (CA) II is responsible for performing annual reviews of professional fee billing for faculty members of UPHS and Clinical Care Associates, conducting focused reviews of specialty areas, and assisting in specialty‑specific education...Local area
$85k - $100k
...The IT Security Analyst is responsible for global cybersecurity operations, risk management, and compliance, ensuring the protection and integrity of enterprise systems and data. Key Responsibilities - Lead and manage global IT cybersecurity strategy and operations...Permanent employment- ...Security Risk & Governance Analyst As a Security Risk & Governance Analyst, you will be a key contributor to our Security Assurance team, doing hands... ...firm's cybersecurity governance, risk, and compliance (GRC) program. From day one you'll take on real work,...Internship
- ...significant publicly traded water, wastewater service and natural gas providers in the U.S. Finance & Rates Analyst in Bryn Mawr, PA The Finance and Rates Analyst II prepares, supports, analyzes and provides testimony for the financial and compliance filings related to...Work at officeLocal areaFlexible hours
- ...Financial Analyst II Location: Chesterbrook PA (Web Cam Interview) Duration: Long Term (W2) H1 Transfer/ GC/ Citizen Client Support: Ensure every call is answered professionally and promptly and that the highest level of customer service is portrayed. Project...Work at office
- ...voice, data, and managed network solutions, supporting customers across markets and geographies. We are excited to be adding a Security Analyst to our growing Information Technology team. In this role, you will support BCM Ones security operations by monitoring and...Work at officeRelocation2 days per week1 day per week
- ...The Security Analyst is responsible for the day-to-day execution of STARR's information security operations across a multi-concept restaurant... ...post-Workday governance and the buildout of the Technology GRC pillar. Required Qualifications Two to four years of hands...Full time
- SEI is looking for a Business Analyst to join its Investment Manager Services Division in Oaks, Pennsylvania. This role involves serving as a liaison between different teams to assist with internal and external client solutions for alternative investment funds. Applicants...
$22 per hour
...Company Overview: Allied Universal®, North America’s leading security and facility services company, offers rewarding careers that... ...Job Description The SOC (Security Operations Center) Security Analyst will be assigned to furthering the security mission within the...Full timeWork at officeLocal areaFlexible hoursShift workNight shiftWeekend work- ...Our employees shape our future each day. Are you living your life's work? Security This position is located at the Perelman Center- 3400 Civic Center Boulevard The Security Officer II provides protection for the safety and security of hospital personnel,...Shift work
- ...Job Description Job Description Harbor Consulting & Management, Inc is looking to hire an Information Security Compliance Analyst - CISSP/CISA. Compensation: ~140K +/DOE. Employment type: ~ FT. We are a 20+ year old professional services organization...
- Administration - Confidential Secretary - Accountant II Upper Darby School District Administrative Office - Upper Darby, Pennsylvania. Open in Google Maps. Job Details Job ID: 5744941 Application Deadline: Posted until filled Posted: May 28, 2026 4:00 AM (UTC) Starting...Permanent employmentFull timeWork at officeImmediate startWork visa
- Young World Physical Education is seeking an Accountant II to join their Business Office in Upper Darby, Pennsylvania. The ideal candidate will perform significant accounting duties, ensuring accurate financial reporting and compliance with state and federal requirements...Permanent employmentFull timeWork at office
- ...Sector Risk & Compliance Advisor | Policy/Legislative Specialist II ProSidian is a Management and Operations Consulting Services... ...Industrial And Commercial | Manufacturing And Operations | National Security & Intelligence | Non-Profit | Professional Services | Real...Full timeContract workWork at officeLocal area
$108.5k - $195.9k
...LNC) helps people to confidently plan for their version of a successful future. We focus on identifying a clear path to financial security, with products including annuities, life insurance, group protection, and retirement plan services. With our 120-year track...Work experience placementWork at officeWork from homeRelocation package3 days per week- ...Management Analyst II Active, final Secret clearance Ability to work onsite at either NSWC-PD or a regional Contractor office... ...the U.S. federal government require our employees to be granted security clearances. Constellation West strives to provide fully integrated...For contractorsFor subcontractorWork at officeWorldwideRelocation package
- ...Management Analyst II Sayres is seeking a Management Analyst II with ability to obtain secret clearance in Philadelphia, PA. This... ...engineering and integration; wargaming; test and evaluation; security, counterintelligence and policy analysis. Sayres is headquartered...Contract workWork at office
- ...Financial Analyst II Plant Operations, Cost Accounting The Financial Analyst II Plant Operations, Cost Accounting role is responsible for supporting cost accounting, operational financial analysis, budgeting, forecasting, month-end close, inventory reporting, and plant...Work at office
- Aqua in Bryn Mawr, PA seeks a Finance & Rates Analyst to support financial filings and rate cases, ensuring compliance with regulatory standards. The candidate will analyze financial models and assist in budget preparation. Successful candidates will possess a BA/BS degree...
- POSITION SUMMARY: A Gate Attendant/Scale Operator is responsible for accurately and efficiently monitoring and recording waste volumes entering the post collection site, as well as collecting appropriate usage fees from customers. Principal Responsibilities Determine content...Contract workTemporary workLocal area
- ...our missionto enhance the health and well-being of the people and communities we serve. We are looking for a Financial Planning Analyst II to analyze, monitor, and budget administrative expenses and headcount for their areas of responsibilities. In this role, you will...Work experience placementRemote workMonday to Friday2 days per week3 days per week
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to GRC Security Analyst II. Be the first to apply!

