InfoSec GRC Analyst (St. Louis)

About This Position – Empower Security, Elevate Compliance: Be the Force Behind WWT's Resilient Future Step into a dynamic role as an Information Security (InfoSec) Governance, Risk, and Compliance (GRC) Analyst within Audit and Compliance, where you will be at the forefront of driving operational excellence within the Audit and Compliance team. In this position, you will play a vital part in ensuring WWT’s compliance landscape remains robust and agile. From monitoring evolving regulations and shaping control frameworks to coordinating audits and delivering impactful training, you will collaborate with diverse teams and help safeguard organizational integrity. If you are passionate about navigating the fast‑paced world of information security, building cross‑functional partnerships, and making a tangible difference in a world‑class technology environment, this is the opportunity for you. Driving Operations within the InfoSec GRC Team Leverage artificial intelligence (AI) powered tools to automate compliance monitoring, risk analysis, and evidence collection processes, enhancing efficiency and accuracy within InfoSec GRC operations. Support the monitoring and analysis of emerging regulations and standards. Offer guidance on the implementation of new regulatory requirements and standards, as well as recommendations for remediating identified issues. Contribute to the development, implementation, and ongoing maintenance of control frameworks across WWT. Perform regular reviews and evidence collection in relation to WWT compliance controls. Aid in the creation and upkeep of WWT’s control mappings to identify overlaps or gaps. Assist with the preparation and maintenance of documentation required for InfoSec GRC audit and compliance activities. Coordinate on‑site audit logistics, including room reservations, resource scheduling, and catering arrangements. Administer audit vendor requirements and manage document repositories through vendor portals and scheduled meetings. Assist with the formulation and communication of audit plans, timelines, and progress updates to relevant stakeholders. Support the design and delivery of training sessions related to controls, standards, and regulations for audit personnel. Record and track risks, issues, decisions, dependencies, and action items associated with audit and compliance initiatives. Provide status and tracking updates on compliance efforts via status meetings, request logs, and other appropriate channels. Foster and sustain collaborative relationships with departments, such as Finance, Risk, Compliance, and Legal. Minimum Required Knowledge General understanding of audit and compliance methodologies, and familiarity with industry‑accepted standards and frameworks. Skill ed in communicating audit plans, timelines, and progress updates to stakeholders in a clear and timely manner. Experience designing and delivering training related to controls, standards, and regulations for audit teams. General knowledge of System and Organization Controls (SOC) audit reports. General knowledge of User Access Review processes of systems and tools. General in information security best practices and frameworks, including (but not limited to) NIST Special Publications and Cyber Security Framework, CIS Controls, ISO/IEC 27000 series, and OWASP Top 10. Competence in tracking and recording risks, issues, decisions, dependencies, and action items for audit and compliance initiatives. Ability to provide status and tracking updates on compliance efforts through meetings and reporting tools. Strong collaboration skills, with the ability to build relationships with Finance, Risk, Compliance, Legal, and other departments. Possess general knowledge of laws and regulations pertinent to information security and the organization. Demonstrate familiarity with information security best practices and recognized frameworks. Excellent verbal and written communication skills. Able to communicate persuasively and influence others. Ability to work independently and collaboratively in a fast‑paced environment. Demonstrate professional skepticism to ensure evidence is sufficient when assessing the relevant information security controls. Minimum Education and Certification Qualifications Candidates must possess either a bachelor’s degree or have between two and four years of experience in Information Security/Cybersecurity, Information Technology, Computer Science, or Information Systems. Desired Certifications (Any or Multiple) Certified Information Systems Auditor (CISA). Certified Information Security Manager (CISM). CompTIA Security+. Similar Cybersecurity certifications. Preferred locations: MO, KS, IL Certain states and localities require employers to post a reasonable estimate of salary range. A reasonable estimate of the current base pay range for this position is $77,200 to $96,500 annually. Actual salary will be based on a variety of factors, including shift, location, experience, skill set, performance, licensure and certification, and business needs. The range for this position in other geographic locations may differ. Certain positions may also be eligible for variable incentive compensation, such as bonuses or commissions, that is not included in the base pay. Benefits Health and Wellbeing: Health, Dental, and Vision Care, Onsite Health Centers, Employee Assistance Program, Wellness program Financial Benefits: Competitive pay, Profit Sharing, 401k Plan with Company Matching, Life and Disability Insurance, Tuition Reimbursement Paid Time Off: PTO and Sick Leave (starting at 20 days per year) & Holidays (10 per year), Parental Leave, Military Leave, Bereavement Additional Perks: Nursing Mothers Benefits, Voluntary Legal, Pet Insurance, Employee Discount Program We strive to create an environment where all employees are empowered to succeed based on their skills, performance, and dedication. Our goal is to cultivate a culture of belonging that encourages innovation, collaboration, and respect for all team members, ensuring that WWT remains a great place to work for All! WWT is an Equal Opportunity Employer Employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law. We are committed to working with and providing reasonable accommodations to individuals with disabilities. If you have a disability and you believe you need a reasonable accommodation in order to search for a job opening or to submit an online application, please call View phone number on click.appcast.io and ask for Human Resources. Applicants to and employees of most private employers, state and local governments, educational institutions, employment agencies and labor organizations are protected under Federal law from discrimination. #J-18808-Ljbffr