Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Senior GRC Analyst

Clayco

Clayco is a full-service, turnkey real estate development, master planning, architecture, engineering, and construction firm that safely delivers clients across North America the highest quality solutions on time, on budget, and above and beyond expectations. With $8.1 billion in revenue for 2025, Clayco specializes in the "art and science of building," providing fast track, efficient solutions for mission critical, industrial, life sciences, power & energy, aviation, commercial, institutional, residential and sports & entertainment related building projects. The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a Risk focused, highly analytical role that ensures all Human and Third-Party risk to Clayco is identified, quantified, documented, and treated to an acceptable level across the Clayco organization. This role will assume ownership of the Third-Party Risk Management (TPRM) process to gather details on the security practices and compliance levels for each third-party being considered or contracted for a solution or services to assess the potential for compromise due to a control gap or exploitable misconfiguration as well as non-compliance with legal and regulatory requirements. Additional contribution will be expected for internal assessments and 3rd Party audits to gather and submit discovery and transactional responses and artifacts. The Sr. GRC Analyst will also assume ownership of Human Risk Management (HRM) including the delivery of comprehensive security awareness education, the end-to-end execution of phishing simulation programs, and the technical maintenance and life-cycle management of security awareness platforms. Beyond simple training, the position focuses on Human Risk Management (HRM), using data-driven insights to identify high-risk user groups and implementing targeted interventions to proactively mitigate human-centric threats to cultivate a security-first culture internally through education and behavioral change. Additional responsibilities will be assigned as deemed necessary. Any travel is usually planned in advance, but issues may arise which warrant immediate travel to one or more satellite locations. The Specifics of the Role Assumes operational ownership of the 3rd Party Vendor Risk Management program identifying, assessing, and mitigating risks associated with external vendors, suppliers, and service providers Conducts due diligence on new and existing vendors by reviewing security questionnaires, SOC reports, compliance certifications, and other supporting attestations Captures, analyzes, and recommends treatment, assignment, and tracking of identified issues Collaborates with legal and stakeholder teams to ensure contracts include specific clauses for data protection, service-level agreements (SLAs), and AI governance Documents and communicates all relevant findings and recommendations to stakeholders Tracks, monitors, and reports on execution of remediation action plans and escalates inadequate responses or progress Assumes ownership of the Security Awareness program determining appropriate topics, themes, scopes, and timing of cyber awareness communications, events, and content delivery Conducts regular, simulated social engineering exercises to assess and improve employee recognition of real-world attacks Develops engaging, simple materials—such as infographics, newsletters, and videos—that translate complex technical risks into layman's terms Maintains Security Awareness training and simulation platforms to support content delivery and End User interaction, including support for any Client-side functionality (i.e., "Report Phish" button) Plans, coordinates, and executes activities for Cybersecurity month Partners with Employee Relations, Legal, and Marketing to ensure security messaging is integrated into the broader corporate culture Tracks Key Risk Indicators (KRI’s) such as actual phishing click-through rates, failed simulations, and missed training as well as Key Performance Indicators (KPIs) like suspicious email reporting, passed simulations, and successful training completion status to measure program effectiveness for leadership Requirements 6-8+ years’ experience in Risk & Compliance Assessment, Audit & Reporting, or similar functions, preferably within the Information Security or Technology fields 3-4+ years working specifically in Information Security roles involving Risk Analysis, Information System Security Assessment, and/or Security Awareness and Human Risk Management Bachelor's degree in Information Technology or related field, or equivalent experience Required Certifications: Certified in Risk & Information Systems Control (CRISC), SANS Security Awareness Professional (SSAP), and Certified Third-party Risk Professional Certification (CTPRP) (Current status, or obtained within 9 months of assuming role) Strong experience leveraging auditing principles and methods to evaluate policies, processes, systems, and vendors to identify business risks and control gaps Strong knowledge of Regulations, Frameworks, and Standards such as NIST 800-171/CSF/RMF, ISO27001, CIS Critical Security Controls, etc. Strong, technical knowledge of modern Systems, Services, Cloud Applications/Platforms, Identity Services, and Data Storage/Handling and their areas of Risk and Threat exposure Experience with administering, maintaining, and leveraging a Risk Register to track and communicate identified Risk and its required remediation Knowledge of statistics, reporting and analytical tools to analyze and solve complex problems Proficiency in necessary productivity tools (i.e., Microsoft Excel, PowerPoint, Word etc.) for analytics and presentations Operate with strong integrity with ability to manage projects of a confidential nature Ability to translate technical or abstract concepts into a narrative that is easily understood Ability to thrive in fast-paced environment. Why Clayco? 2025 Best Places to Work – St. Louis Business Journal, Los Angeles Business Journal, and Phoenix Business Journal. 2025 ENR Top 400 – Top Data Center Contractor (Top 3). 2025 ENR Top 100 Design-Build Firms – Design-Build Contractor (Top 5). Discretionary Annual Bonus: Subject to company and individual performance. Comprehensive Benefits Package Including: Medical, dental and vision plans, 401k, generous PTO and paid company holidays, employee assistance program, flexible spending accounts, life insurance, disability coverage, learning & development programs and more! Compensation The salary range for this position considers a wide range of factors in making compensation decisions including but not limited to: Education, qualifications, skills, training, experience, certifications, internal equity, and location. Compensation decisions are dependent on the facts and circumstances of each case. #J-18808-Ljbffr

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Senior GRC Analyst in Saint Louis, MO vacancy
  •  ...The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Third-Party & Human Risk Management (TPHRM) is a risk focused, highly analytical role that ensures all human and third‑party risk to Clayco is identified, quantified... 
    Senior
    Immediate start
    Flexible hours

    Gilder Search Group

    Saint Louis, MO
    4 days ago
  • Gilder Search Group is looking for a Sr. GRC Analyst focused on Third-Party & Human Risk Management in St. Louis, Missouri. The role ensures all human and third-party risks to Clayco are identified and treated appropriately. Key responsibilities include owning the TPRM... 
    Senior

    Gilder Search Group

    Saint Louis, MO
    3 days ago
  • Sky Mavis is seeking a Senior GRC Analyst focused on Third-Party and Human Risk Management in St. Louis, Missouri. This role requires 6-8+ years of experience in Risk Assessment and Information Security, with strong analytical skills. You will lead the Vendor Risk Management... 
    Senior

    Sky Mavis

    Saint Louis, MO
    5 days ago
  •  ...Join our team as a GRC Analyst and play a key role in regulatory compliance, IT risk management, and security. You'll assess risks, support audits, and develop policies that align with industry standards. If you have a solid IT security background, experience in regulated... 
    Suggested
    Casual work
    Work at office
    Work from home
    Night shift
    Weekend work

    Delta Dental of Missouri

    Saint Louis, MO
    4 days ago
  • Delta Dental of Missouri is seeking a GRC Analyst to ensure adherence to client and regulatory requirements while managing technology risks. This hybrid position requires both home and office work, and entails collaboration with various teams to implement IT compliance... 
    Suggested
    Work at office
    Work from home

    Delta Dental of Missouri

    Saint Louis, MO
    5 days ago
  • $62k - $112.7k

    A leading financial institution in St. Louis is seeking an experienced compliance risk manager to perform risk-based compliance testing and provide expertise across business units. Qualified candidates will have a Bachelor's degree and at least 2 years of experience in ...
    Senior

    North Star Staffing Solutions, Inc.

    Saint Louis, MO
    3 days ago
  •  ...MANTECH seeks a motivated, career and customer-oriented Senior GEOINT Analyst to join our team in St. Louis, MO!   Job duties include, but are not limited to: Conduct GEOINT analysis on national security issues using imagery, geospatial data, and multi-INT sources... 
    Senior
    Work at office
    Remote work

    MANTECH

    Saint Louis, MO
    4 hours ago
  • Underwriter Services Association is looking for experienced risk control consultants to conduct assessments for commercial lines insurance carriers. Candidates should have 10+ years in risk consulting and excellent communication skills. The role includes scheduling surveys...
    Senior

    Underwriter Services Association

    Saint Louis, MO
    2 days ago
  • EY is seeking a Senior Consultant in the Power & Utilities risk space to lead regulatory compliance projects and optimize internal controls. You will guide cross-functional teams, analyze information systems, and implement tailored solutions for clients while mentoring... 
    Senior

    EY

    Saint Louis, MO
    3 days ago
  • $100k - $179k

     ...About this role: Wells Fargo is seeking a Senior Risk Asset Review Specialist within Credit Risk as part of Corporate Risk. Learn more about the career areas and lines of business at wellsfargojobs.com ( . Credit Risk, which independently oversees the management... 
    Senior
    Work experience placement
    Relocation package

    Wells Fargo

    Saint Louis, MO
    3 days ago
  • Edward Jones in St. Louis is seeking a Data Governance & Risk Analyst III to manage data-related risks and ensure compliance across the data lifecycle. Your role will include leading risk assessments, supporting audit readiness, and collaborating with various functions... 
    Senior

    Edward Jones

    Saint Louis, MO
    3 days ago
  • Enterprise Bank & Trust is seeking a Fair Lending Compliance Director to manage compliance with fair lending laws and CRA performance. The role involves conducting statistical analyses, assessing fair lending risks, and ensuring compliance with reporting requirements. Ideal...
    Senior

    Enterprise Bank & Trust

    Saint Louis, MO
    1 day ago
  • UniGroup, Inc. is seeking a Claims Specialist II to investigate, evaluate, and resolve cargo loss and damage claims across multiple lines of business. You will work with customers, agents, military representatives, and internal teams to gather information, determine liability...
    Senior

    UniGroup, Inc.

    Saint Louis, MO
    2 days ago
  • $85k - $115k

    Senior Third Party Risk Analyst (St Louis - In Office) This range is provided by Bruin. Your actual pay will be based on your skills and experience — talk with your recruiter to learn more. Base pay range $85,000.00/yr - $115,000.00/yr Direct message the job poster from... 
    Senior
    Full time
    Contract work
    Work experience placement
    Work at office
    Relocation

    Bruin

    Saint Louis, MO
    3 days ago
  •  ...organization and manages the risks associated with EDJ's use of and reliance upon Third Party relationships across all business lines. The Senior Risk and Control Associate is responsible for executing the Firm's TPRM program by evaluating, monitoring, and managing risks... 
    Senior
    Temporary work
    Work at office
    Home office
    Flexible hours
    3 days per week

    Edward Jones

    Saint Louis, MO
    2 days ago
  • Spectrum Brands in St. Louis, Missouri, is looking for a Senior Regulatory Affairs Specialist to partner with various teams ensuring new innovations comply with regulations. This hybrid role allows for flexibility and requires effective communication and regulatory knowledge... 
    Senior

    Spectrum Brands

    Saint Louis, MO
    3 days ago
  • Spectrum Brands, Inc in St. Louis, MO is seeking a Senior Regulatory Affairs Specialist to drive product compliance and innovation for pet care products. This hybrid position involves collaboration with various teams to manage regulatory risks and ensure successful product... 
    Senior

    Spectrum Brands, Inc

    Saint Louis, MO
    3 days ago
  •  ...Tetra, Instant Ocean, Marineland, 8-in-1, Dingo, FURminator, Nature's Miracle, GloFish, DreamBone and SmartBones. Job Summary As a Senior Regulatory Affairs Specialist for the Pet Care team in our Earth City, MO office, you will be partnering across marketing, R&D, supply... 
    Senior
    Work at office
    Work from home
    Worldwide
    Monday to Friday

    Spectrum Brands

    Saint Louis, MO
    23 hours ago
  • BJC Medical Group is hiring a Senior Compliance Coordinator in St. Louis, MO. This remote position involves reviewing specialty provider documentation for billing accuracy and developing educational materials. The ideal candidate will have 5-10 years of experience, a high... 
    Senior
    Remote job

    BJC Medical Group

    Saint Louis, MO
    4 days ago
  • $97.9k - $179.5k

     ...their risk landscape, ensuring confidence and trust through robust risk and controls engagements. Your Key Responsibilities As a Senior Consultant, you will: Lead and manage risk and controls projects focused on regulatory compliance within the Power & Utilities sector... 
    Senior
    Flexible hours

    EY

    Saint Louis, MO
    3 days ago
  • KPMG is seeking a Senior Associate to join our Federal Advisory practice in St. Louis, MO. The role focuses on IT audit readiness engagements for U.S. Federal clients, with on-site responsibilities and a requirement for a U.S. Government Secret clearance. Responsibilities... 
    Senior

    KPMG Careers

    Saint Louis, MO
    1 day ago
  • Spectrum is seeking a Manager, Income Tax to oversee tax provision calculations, compliance, and reporting excellence. You will drive strategies, maintain deferred tax balances, and contribute to regulatory confidence across Spectrum’s tax function. Ideal candidates bring...
    Senior

    Spectrum

    Saint Louis, MO
    3 days ago
  • Anheuser-Busch is seeking a Senior Manager for Tax Operations focusing on the execution of U.S. federal tax returns and compliance reporting. This role requires strong technical expertise in tax compliance, hands-on management of corporate tax returns, and coordination... 
    Senior

    Anheuser-Busch

    Saint Louis, MO
    3 days ago
  • $34.65 - $51.98 per hour

     ...Additional Information About the Role BJC HealthCare System is hiring a Full-Time Senior MRI Technologist - Operating Room (Day Shift) for Barnes-Jewish Hospital - New Plaza West Tower (St. Louis, MO)   Experienced Radiologic Technologists and MRI Technologists... 
    Senior
    Full time
    Flexible hours
    Shift work
    Day shift
    3 days per week

    BJC Healthcare

    Saint Louis, MO
    16 days ago
  • An established security consulting firm is seeking a dedicated professional for their Information Risk Management department in St. Louis, Missouri. The role involves conducting risk assessments, advising on security measures, and contributing to the development of corporate...
    Senior

    Fabergent

    Saint Louis, MO
    3 days ago
  • Ramboll Group A/S in St. Louis, MO seeks a Managing Consultant or Senior Managing Consultant to lead air quality projects within the Environment & Health Division. You will oversee consultant staff, interpret regulations, and prepare permit applications and reports for... 
    Senior

    Ramboll Group A/S

    Saint Louis, MO
    2 days ago
  • 3M HEALTHCARE is seeking an experienced Trade Compliance leader to govern and improve import/export programs for U.S. and Canadian businesses. The role focuses on policy, standards, training, and audit support, serving as the primary corporate contact for business compliance...
    Senior

    3M HEALTHCARE

    Saint Louis, MO
    5 days ago
  • Edward Jones, a leading financial services firm based in St. Louis, MO, is hiring a Field Supervision Director. The role involves guiding branch teams and ensuring compliance with industry regulations. Ideal candidates will possess several FINRA licenses and demonstrate...
    Senior

    Edward Jones

    Saint Louis, MO
    1 day ago
  • Consigli Construction Co., Inc. is looking for a Quality Control Manager in St. Louis, Missouri. The QCM will implement and manage the QC Program throughout project lifecycles, collaborating closely with the project team. This role requires strong communication skills, ...
    Senior

    Consigli Construction Co., Inc.

    Saint Louis, MO
    5 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Senior GRC Analyst. Be the first to apply!