Contract Information Security GRC Analyst
Chatham Financial
Job Description Overview We don't simply hire employees. We invest in them. When you work at Chatham, we empower you - offering professional development opportunities to help you grow in your career, no matter if you've been here for five months or 15 years. Chatham has worked hard to create a distinct work environment that values people, teamwork, integrity, and client service. You will have immediate opportunities to partner with talented subject matter experts, work on complex projects, and contribute to the value Chatham delivers every day. In this role you will The Information Security GRC Analyst with a Risk and Policy focus is responsible for assisting in the execution of the organization's security risk management program and supporting policy governance. This role takes the lead in conducting the security risk assessments for Chatham systems, vendors and business processes. This role is responsible for maintaining the technology and cybersecurity risks on the operational risk register; tracking issues and risk mitigation activities; and supports policy development. This role is also responsible for translating technical risks into business-relevant recommendations, recommending risk-based decisions, documenting decisions on risk treatment, tracking risk mitigation action plans to completion and reviewing systems/processes for policy compliance. Risk Assessment Execution: Conduct technology and security risk assessments for internal systems, product and technology projects using established frameworks (NIST SP 800-30, ISO 27005, etc.) Technology and Cybersecurity Risk Register Management: Maintain the technology risk register (includes Cybersecurity) documenting threats, vulnerabilities, impacts, likelihood, risk ratings, and treatment decisions; ensure consistent updates with stakeholder input Technology and Cybersecurity Risk Mitigation Tracking: Document risk treatment plans with action items, responsible parties, and target dates; track remediation progress; verify risk reduction upon closure Technology and Cybersecurity Policy Support: Support policy lifecycle activities including drafting, review, and updates; ensure policies align with industry standards such as NIST, ISO 27001, etc., Cybersecurity and Information Security Risk Metrics Development: Develop and report risk metrics and KRIs; analyze trends in risk posture; identify systemic issues requiring management attention Technology and Cybersecurity Risk Reporting/Communication: Translate technical risk findings into business-relevant language; prepare risk summaries for management review and decision-making Stakeholder Engagement: Partner with control owners, system owners, product team, technology team and business stakeholders to identify and assess risks throughout the system lifecycle. Your Impact Success in this role requires strong collaborative relationships across Chatham. The Information Security GRC Analyst partners closely with the Manager of Information Security GRC, and Information Security leadership to align risk priorities with security strategy. The analyst will interact on a regular basis with technology and information security control owners to ensure controls are properly designed, implemented, and monitored. The analyst engages with Operational Risk to integrate technology and cybersecurity risks into the operational risk framework and reporting. Finally, collaboration with external auditors during SOC 2 and regulatory examinations validates that risk management practices meet industry standards and client expectations. Contributors to your success Bachelor's degree, preferably in Information Security, Computer Science, Risk Management, or related experience in the field. 3-5+ years of experience in IT audit, IT risk management, executing security assessments, or experience in a related Technology, IT Audit or Data Governance role. Experience in supporting/coordinating company SOC 2 Trust Services Criteria audits or conducting SOC 2 audits. Experience in conducting technology and security risk assessments using NIST, ISO 27005, or similar methodologies. Strong understanding of Cybersecurity risks and mitigation strategies as well as functional experience with threat modeling, vulnerability analysis, and risk quantification and follow through. Knowledge of security frameworks: NIST CSF, NIST 800-53, ISO 27001, Center of Internet Security (CIS), SOC 2 Trust Services Criteria, Cloud Control Matrix (CCM). Knowledge of third‑party security assessments and/or data protection/impact assessments. Excellent analytical and written communication skills. Certifications preferred: CRISC, CDPSE, CISA, CISSP, ISO 27001 Lead Auditor/Lead Implementer. Other certifications considered: CGEIT, CCSK, CompTIA Security+, CompTIA CySA+, CISSP-Associate, GIA, C/GSEC, PMP/CAPM, AWS Cloud Practitioner, Azure Cloud Practitioner. * This is a contract position working 40 hours a week. #J-18808-Ljbffr Chatham Financial
$104.09k - $173.48k
...explore the universe, and connect the world. Our team is excited to meet you! Job Overview & Responsibilities At ULA, Information Security GRC Analyst 3 plays a critical role in supporting cybersecurity, assurance, and compliance activities for mission‑focused...SuggestedHourly payPermanent employmentFull timeFor contractorsWork experience placementRelocationFlexible hours- ...Offensive Security Analyst (Structured / Non-Exploit) - AI Training About the Role What if your offensive security expertise could... ...cybersecurity reasoning. This is a fully remote, flexible contract role. No exploit development required - just deep, practical...Contract workHourly payOngoing contractFreelanceRemote workFlexible hours
$75.8k - $113.8k
...career, and contribute to a secure future for generations. Northrop... .... As an Industrial Security Analyst – Level 2 located in Aurora,... ...PHYSEC, COMSEC, PERSEC, OPSEC, Contract Security, Security Education,... ...submit clearance and access information using the appropriate...Contract workFor contractorsWork at officeRemote workRelocationShift work- ...Network Security Analyst LOCATION Aurora, CO 80014 CLEARANCE TS/SCI Full Poly (Please note this... ...measures to safeguard sensitive information. Collaborating with cross-functional teams... ...EXPERIENCE General comment on degrees: Most contracts allow additional experience (4-5 years...SuggestedTemporary workFor contractorsImmediate startFlexible hours
- ...Ping Identity, we believe in making digital experiences both secure and seamless for all users, without compromise. We call... ...digital experiences, and identity and access management. Information Security Analyst As an Information Security Analyst, you will work closely...SuggestedLocal areaWorldwideFlexible hours
$60 - $65 per hour
...Our client, a leading organization in the technology sector, is seeking a dedicated and detail-oriented Information Security Analyst to join their dynamic team. As an integral part of the Security Operations Center (SOC), you will play a vital role in safeguarding the...Hourly payWeekly payTemporary workFlexible hours$50 - $60 per hour
A leading AI firm is seeking a Securities Analyst to enhance AI models for financial decision-making. This remote position allows you to work... ...and preferably a Masters or PhD. This is an independent contract opportunity, only available to applicants in the United States...Contract workRemote jobHourly payFull timePart time- Description Industrial Security Analyst - Level 5 (Staff) at Aurora, CO. 100% onsite; contractor... ..., PHYSEC, COMSEC, PERSEC, OPSEC, Contract Security, Security Education, Investigations... ..., and submit clearance and access information using the appropriate government database...Contract workFor contractorsWork at officeRelocation package
$94.2k - $141.2k
...career, and contribute to a secure future for generations. Northrop... .... As a Industrial Security Analyst - Level 3 or Level 4 located... ...PHYSEC, COMSEC, PERSEC, OPSEC, Contract Security, SETA,... ...submit clearance and access information using the appropriate government...Contract workFor contractorsInterim roleWork at officeRemote workRelocationShift work$65k - $75k
...day‑to‑day tactical support to the enterprise’s second line Information Security Risk & Compliance function by executing defined control oversight... ...activities. The Information Security Risk and Compliance Analyst performs recurring and ad hoc assessments such as user...- Chatham Financial is seeking an Information Security GRC Analyst in Denver, CO to manage security risk assessments and policy governance. This contract role involves assessing technology and cybersecurity risks, maintaining the risk register, and developing metrics to measure...Contract work
- ...Job Description Job Description Experienced Cyber Security Specialist sought for Canadian services company. You will be supporting... ..., and oversee remediation of threats. · Develop and enforce information security policies and procedures. · Monitor IT...Live in
$65k - $75k
Sunflower Financial Inc. is seeking an Information Security Risk and Compliance Analyst to provide tactical support to its compliance function. The role focuses on executing control oversight, conducting assessments, and supporting regulatory readiness. Candidates should...$50 - $60 per hour
...committed to creating high-quality AI. We are looking for a Securities Analyst to join our team to help train the next generation of AI while... ...in the United States will be considered for this role. This is an independent contract position. #J-18808-Ljbffr DataAnnotationContract workHourly payFull timePart timeWork experience placementRemote workFlexible hours- Alignerr is seeking a Cloud Security Analyst to work remotely on identifying and analyzing risks in cloud environments. The analyst will review... ...security impact effectively. Flexible working hours and contract extension potential make this role appealing. #J-18808-Ljbffr...Contract workRemote jobFlexible hours
$27.17 - $31 per hour
Responsibilities Protect enterprise systems and information by promptly responding to security threats and incidents, acting individually and as part of a team to resolve issues Assist in analyzing cybersecurity incidents to solve issues and improve incident handling procedures...Hourly payApprenticeshipShift workDay shift$56k - $80k
...Job Summary Our client is seeking a Security Analyst to join a security team responsible for maintaining compliance across a lab infrastructure environment. This role focuses on validating security compliance across hardware, software, and networking components used in...Local area- ...Governance, Risk & Compliance (GRC) Analyst (AI Training) About the... ..., risk assessments, or security audits, your expertise is exactly... ...Type : Hourly Contract Location : Remote Commitment... ...workflows Background in information security, internal audit, or...Contract workHourly payOngoing contractFreelanceRemote work10 hours per weekFlexible hours
- ...In 1986, Robert L. Nelson founded the information systems consulting firm of R.L. Nelson... ...yourself joining our team as our newest Security Analyst.SUMMARYWe are seeking a dynamic and experienced... ...Network Detective, Compliance Manager GRC, VulScan.Strong problem-solving, and...Work at officeLocal areaFlexible hours
$90k - $105k
...Position Summary PTMA Financial Solutions is seeking an experienced, hands‑on Security Analyst to serve as a key contributor within our growing information security program. In this role, you will report directly to the Information Security Manager and work in close partnership...$40 per hour
...technology firm is seeking experienced cybersecurity professionals to join their team remotely. This role involves evaluating AI-generated security content, solving complex cybersecurity problems, and providing crucial feedback to improve AI accuracy. Applicants should have at...Hourly payRemote workFlexible hours- System One in Lakewood, CO is seeking a Governance Risk & Compliance Analyst to join their Global Information Security Office. This hybrid role involves supporting security governance, risk management, and compliance programs while contributing to policy development and...Work at office
- Vertilocity in Englewood, Colorado is seeking a dynamic Security Analyst to safeguard client networks and data from cyber threats. The ideal candidate will have a strong IT consulting background and expertise in analyzing business processes, implementing technology-driven...
- Leprino-Foods in Denver is seeking an IT Security Analyst to enhance security measures for global dairy manufacturing. This role involves monitoring security platforms, investigating incidents, and providing strategic guidance on security tools. The candidate should have...
- SwiftCruit is looking for a dedicated cybersecurity professional in Denver, CO, to protect enterprise systems and respond promptly to security threats. You'll analyze incidents, improve handling procedures, and create documentation for incidents presented to the team. The...
$90k - $110k
...stack, with a primary focus on AssetBacked Securities (ABS). Covered sectors include autos,... .... Act as a Securitized Products analyst with a primary focus on ABS, while maintaining... ...ability to synthesize large volumes of information quickly. Commitment to building and...$90k - $110k
..., with a primary focus on Asset‑Backed Securities (ABS). Covered sectors include autos, equipment... ...markets. Act as a Securitized Products analyst with a primary focus on ABS, while... ...ability to synthesize large volumes of information quickly. Commitment to building and...- SwiftCruit is hiring an Industrial Security Analyst - Level 5 in Aurora, CO. This role is 100% onsite and involves supporting security activities for classified materials at the Space Sector. The ideal candidate will have a Top Secret security clearance and extensive experience...Relocation package
$40 per hour
A leading cybersecurity company is seeking experienced professionals to evaluate AI-generated content and solve cybersecurity problems. This remote position allows flexibility in project choice and schedule, with compensation starting at $40 per hour. Candidates should ...Remote jobHourly pay- A leading aerospace and defense company is seeking an Industrial Security Analyst - Level 2 for its Aurora, CO location. This role involves ensuring security compliance with government regulations, supporting classified programs, and managing security operations. Candidates...
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Contract Information Security GRC Analyst. Be the first to apply!
- data analyst bank Denver, CO
- data analyst part time work from home Denver, CO
- data analyst excel Denver, CO
- data visualization analyst Denver, CO
- senior data management analyst Denver, CO
- data protection analyst Denver, CO
- data analyst full time Denver, CO
- senior data governance analyst Denver, CO
- data analyst - r python sql Denver, CO
- data solutions analyst Denver, CO


