Senior GRC Analyst
Gilder Search Group
The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a risk focused, highly analytical role that ensures all human and third‑party risk to Clayco is identified, quantified, documented, and treated to an acceptable level across the Clayco organization. This role will assume ownership of the Third-Party Risk Management (TPRM) process to gather details on the security practices and compliance levels for each third‑party being considered or contracted for a solution or services to assess the potential for compromise due to a control gap or exploitable misconfiguration as well as non‑compliance with legal and regulatory requirements. Additional contribution will be expected for internal assessments and third‑party audits to gather and submit discovery and transactional responses and artifacts. The Sr. GRC Analyst will also assume ownership of Human Risk Management (HRM) including the delivery of comprehensive security awareness education, the end‑to‑end execution of phishing simulation programs, and the technical maintenance and life‑cycle management of security awareness platforms. Beyond simple training, the position focuses on Human Risk Management (HRM), using data‑driven insights to identify high‑risk user groups and implementing targeted interventions to proactively mitigate human‑centric threats to cultivate a security‑first culture internally through education and behavioral change. Additional responsibilities will be assigned as deemed necessary. Any travel is usually planned in advance, but issues may arise which warrant immediate travel to one or more satellite locations. The Specifics of the Role Assumes operational ownership of the 3rd Party Vendor Risk Management program identifying, assessing, and mitigating risks associated with external vendors, suppliers, and service providers Conducts due diligence on new and existing vendors by reviewing security questionnaires, SOC reports, compliance certifications, and other supporting attestations Captures, analyzes, and recommends treatment, assignment, and tracking of identified issues Collaborates with legal and stakeholder teams to ensure contracts include specific clauses for data protection, service‑level agreements (SLAs), and AI governance Documents and communicates all relevant findings and recommendations to stakeholders Tracks, monitors, and reports on execution of remediation action plans and escalates inadequate responses or progress Assumes ownership of the Security Awareness program determining appropriate topics, themes, scopes, and timing of cyber awareness communications, events, and content delivery Conducts regular, simulated social engineering exercises to assess and improve employee recognition of real‑world attacks Develops engaging, simple materials—such as infographics, newsletters, and videos that translate complex technical risks into layman’s terms Maintains Security Awareness training and simulation platforms to support content delivery and End User interaction, including support for any Client‑side functionality (i.e., "Report Phish" button) Plans, coordinates, and executes activities for Cybersecurity month Partners with Employee Relations, Legal, and Marketing to ensure security messaging is integrated into the broader corporate culture Tracks Key Risk Indicators (KRI's) such as actual phishing click-through rates, failed simulations, and missed training as well as Key Performance Indicators (KPIs) like suspicious email reporting, passed simulations, and successful training completion status to measure program effectiveness for leadership Requirements 6‑8+ years’ experience in Risk & Compliance Assessment, Audit & Reporting, or similar functions, preferably within the Information Security or Technology fields 3‑4+ years working specifically in Information Security roles involving Risk Analysis, Information System Security Assessment, and/or Security Awareness and Human Risk Management Bachelor’s degree in Information Technology or related field, or equivalent experience Required Certifications: Certified in Risk & Information Systems Control (CRISC), SANS Security Awareness Professional (SSAP), and Certified Third‑party Risk Professional Certification (CTPRP) (Current status, or obtained within 9 months of assuming role) Strong experience leveraging auditing principles and methods to evaluate policies, processes, systems, and vendors to identify business risks and control gaps Strong knowledge of Regulations, Frameworks, and Standards such as NIST 800-171/CSF/RMF, ISO27001, CIS Critical Security Controls, etc. Strong, technical knowledge of modern Systems, Services, Cloud Applications/Platforms, Identity Services, and Data Storage/Handling and their areas of Risk and Threat exposure Experience with administering, maintaining, and leveraging a Risk Register to track and communicate identified Risk and its required remediation Knowledge of statistics, reporting and analytical tools to analyze and solve complex problems Proficiency in necessary productivity tools (i.e., Microsoft Excel, PowerPoint, Word etc.) for analytics and presentations Operate with strong integrity with ability to manage projects of a confidential nature Ability to translate technical or abstract concepts into a narrative that is easily understood Ability to thrive in fast‑paced environment. Some Things You Should Know This position is classified as a safety‑sensitive role in accordance with applicable state and federal laws. Candidates selected for this position will be subject to a comprehensive background check, which includes mandatory drug testing. Benefits Discretionary Annual Bonus: Subject to company and individual performance. Comprehensive Benefits Package Including: Medical, dental and vision plans, 401k, generous PTO and paid company holidays, employee assistance program, flexible spending accounts, life insurance, disability coverage, learning & development programs and more! Compensation The salary range for this position considers a wide range of factors in making compensation decisions including but not limited to: Education, qualifications, skills, training, experience, certifications, internal equity, and location. Compensation decisions are dependent on the facts and circumstances of each case. #J-18808-Ljbffr Gilder Search Group
- Gilder Search Group is looking for a Sr. GRC Analyst focusing on Third-Party & Human Risk Management in Atlanta, Georgia. This role involves risk analysis, compliance assessments, vendor management, and developing security awareness training. The ideal candidate has 6-8...Senior
$55 per hour
...summary: GDOT is building a Governance, Risk, and Compliance (GRC) function within the Office of Information Technology to... ...regulatory framework alignment, and audit readiness practices. This senior-level role is responsible for designing the GRC program structure...SeniorHourly payContract workTemporary workWork experience placementWork at officeLocal area- A leading global financial services firm based in Atlanta seeks an Analyst for its Information Security Governance, Risk, and Compliance (GRC) team. This role involves maintaining policies, producing security metrics reports, and responding to inquiries. Candidates should...Suggested
- A leading financial services firm based in Atlanta, Georgia, is seeking an Analyst, Information Security GRC. The role involves responsibilities in maintaining corporate security policies, producing security metrics, and conducting risk assessments. The ideal candidate...Suggested
- A financial services provider in Atlanta seeks an Analyst for its Information Security GRC team. The role includes managing security metrics, maintaining policies, and handling regulatory inquiries. Ideal candidates have a degree in Information Security, experience in...Suggested
- CRH is seeking a cybersecurity governance professional to drive risk assessment and security standards across its global operations. This position based in Atlanta offers a hybrid work schedule and significant engagement across divisions. The successful candidate will have...
- Dormont Manufacturing Co is looking for a Technology Compliance & Emerging Risk Senior Associate in Atlanta, Georgia. This role involves conducting technology compliance and risk assessments while supporting cybersecurity governance and emerging technology risk management...Senior
- Regions Bank is seeking an Enterprise Compliance and Operational Risk Analyst in Atlanta, GA. This position requires a Bachelor's degree and at least six years of experience in risk management or related fields, aiming to develop a strong risk culture across the organization...Senior
- ...A global technology company is seeking a Senior Industry Principal to act as a trusted advisor to key clients, leveraging expertise in supply chain management and business strategy. This remote position requires 10-15 years of relevant experience, with a strong background...SeniorRemote work
- Lewis | James Professional seeks a Business Analyst for Risk and Compliance in Atlanta, Georgia. The role involves supporting banking merger initiatives and creating business requirement documents. Ideal candidates will have a Bachelor’s degree in a related field and over...Senior
- Cardinal Health is seeking a Sr Regulatory Affairs Specialist to support its Medical Solutions team, focusing on regulatory expertise for medical devices. Responsibilities include aiding product development, ensuring regulatory compliance, and managing global registrations...SeniorRemote work
$92.5k - $120k
...To support the continued growth of our Risk Advisory for State & Local Government practice, an opportunity has been created for a Senior Associate to join our nationally distributed team performing risk and accounting consulting engagements. Our clients rely on our expertise...SeniorWork experience placementWork at officeLocal areaRemote work$212k - $318k
...We are seeking a Partner, Senior Health Actuary to join our Actuarial and Financial Group (AFG) in Mercer's Health practice. The location is open. Responsibilities Lead actuarial and financial client engagements and relationships to ensure service standards are...Senior- A financial technology firm based in Atlanta is seeking a Senior Analyst for IT Internal Control. In this role, you will develop and maintain the company's IT internal control framework, ensuring compliance with regulations including PCI-DSS and GDPR. The ideal candidate...Senior
- 0011 Checkout LLC in Atlanta, Georgia is looking for an individual with expertise in underwriting and financial analysis to enhance business models and support credit risk management. This role involves collaborating with internal departments and providing mentorship to...Senior
- NCSL International is looking for a Senior Geospatial Fire Analyst & Systems Analyst to model wildfire hazards and risks. With over 5 years of experience in geospatial analysis, you will support decision-making and guide software enhancements for wildfire risk products...SeniorRemote job
- EY is seeking a Senior Manager for its Life Sciences Regulatory Submissions practice. This role is crucial in driving growth and establishing EY as a leader in Regulatory Compliance. You will lead client engagement teams, develop solutions, and manage relationships with...Senior
- A leading financial technology company seeks a Lead SOX Risk Advisor for their SOX Risk and Compliance Organization in Atlanta. The role involves driving SOX readiness projects and ensuring financial reporting integrity. Candidates should have over 7 years of relevant experience...Senior
- A global consulting firm is seeking a Senior Consultant for their Risk Technology practice. You will use your expertise with ServiceNow IRM to help clients optimize their risk and compliance programs. Candidates should have relevant degrees and at least 2 years of experience...SeniorFlexible hours
$159.05k - $200k
Senior Director of Equal Opportunity & Compliance/Title IX Coordinator Core Responsibilities: The Senior Director of Equal Opportunity & Compliance/Title IX Coordinator is responsible for the leadership, management, and execution of Georgia Tech’s equal opportunity and...SeniorWork at officeLocal area- Riveron is seeking a Senior Associate for its IT Risk Advisory group in Atlanta, Georgia. This role involves assessing IT General Controls and conducting risk assessments while working closely with clients to understand their unique needs. The ideal candidate will have...Senior
- The Federal Home Loan Bank of Atlanta is seeking a qualified individual to conduct collateral verification reviews and analyze pledges to support lending. This role includes preparing evaluations of mortgage loans, interacting with member institutions, and offering guidance...SeniorRemote workFlexible hours
- Job Description Seeking a M3 Maintenance Customer Order (MCO) focused Sr/Principal Consultant for a multi-division distribution project in the flooring/building sector. The ideal candidate will have extensive experience in the Company’s M3 cloud solutions, specifically...Senior
- ...A leading insurance company is looking for a Senior Actuarial Analyst in Atlanta, Georgia. The role involves leading actuarial projects, supporting robust pricing frameworks, and collaborating closely with management. Ideal candidates should have at least 4 years of experience...SeniorRemote workFlexible hours
- Job DescriptionTitle: Senior Analyst/Associate Transaction Fraud Analytics (Senior Fraud Risk Analyst)Location: Atlanta, GA (Hybrid)Department: Risk Management/Fraud PreventionResponsibilities:Develop and implement fraud detection models using advanced analytics and machine...Senior
- Northside Hospital Inc. in Atlanta seeks an Auditor to conduct and assist with internal and external audits. The role requires a Bachelor's Degree in Accounting or comparable degree with at least two years of experience, along with a current CPA or CIA license. Responsibilities...SeniorWeekend work
- Cooper Lighting Solutions in Atlanta is looking for a seasoned professional to support their ERP and finance data integration initiatives. This pivotal role demands robust technical skills alongside excellent communication, facilitating collaboration across different teams...Senior
- A leading banking institution is seeking a Senior Operations Risk Analyst in Atlanta, GA. This role will focus on identifying, assessing, and mitigating operational risks while ensuring compliance and strengthening the internal control environment. Candidates should have...Senior
- Fairygodboss is looking for a Loan Servicing Analyst Senior in Atlanta, Georgia. This role focuses on servicing a complex commercial real estate portfolio, ensuring compliance with related agreements, and managing active cash flows. Candidates should possess a Bachelor...Senior
$120k - $140k
...Senior Compliance Analyst Atlanta, Georgia, United States $ 120,000.00 - 140,000.00 (US Dollar) About the job Senior Compliance Analyst A global leader in logistics, offering a broad range of solutions including the transportation of packages and freight, the...SeniorContract workWork experience placement
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior GRC Analyst. Be the first to apply!
- senior cloud service delivery manager Atlanta, GA
- senior business analyst contract Atlanta, GA
- senior product design engineer Atlanta, GA
- senior game producer Atlanta, GA
- senior software manager Atlanta, GA
- senior manager business analytics Atlanta, GA
- senior marketing account manager Atlanta, GA
- senior marketing manager Atlanta, GA
- senior contracts analyst Atlanta, GA
- sr operations manager Atlanta, GA


