Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Contract Information Security GRC Analyst

Chatham Financial

Job Description Overview We don't simply hire employees. We invest in them. When you work at Chatham, we empower you - offering professional development opportunities to help you grow in your career, no matter if you've been here for five months or 15 years. Chatham has worked hard to create a distinct work environment that values people, teamwork, integrity, and client service. You will have immediate opportunities to partner with talented subject matter experts, work on complex projects, and contribute to the value Chatham delivers every day. In this role you will The Information Security GRC Analyst with a Risk and Policy focus is responsible for assisting in the execution of the organization's security risk management program and supporting policy governance. This role takes the lead in conducting the security risk assessments for Chatham systems, vendors and business processes. This role is responsible for maintaining the technology and cybersecurity risks on the operational risk register; tracking issues and risk mitigation activities; and supports policy development. This role is also responsible for translating technical risks into business-relevant recommendations, recommending risk-based decisions, documenting decisions on risk treatment, tracking risk mitigation action plans to completion and reviewing systems/processes for policy compliance. Risk Assessment Execution: Conduct technology and security risk assessments for internal systems, product and technology projects using established frameworks (NIST SP 800-30, ISO 27005, etc.) Technology and Cybersecurity Risk Register Management: Maintain the technology risk register (includes Cybersecurity) documenting threats, vulnerabilities, impacts, likelihood, risk ratings, and treatment decisions; ensure consistent updates with stakeholder input Technology and Cybersecurity Risk Mitigation Tracking: Document risk treatment plans with action items, responsible parties, and target dates; track remediation progress; verify risk reduction upon closure Technology and Cybersecurity Policy Support: Support policy lifecycle activities including drafting, review, and updates; ensure policies align with industry standards such as NIST, ISO 27001, etc., Cybersecurity and Information Security Risk Metrics Development: Develop and report risk metrics and KRIs; analyze trends in risk posture; identify systemic issues requiring management attention Technology and Cybersecurity Risk Reporting/Communication: Translate technical risk findings into business-relevant language; prepare risk summaries for management review and decision-making Stakeholder Engagement: Partner with control owners, system owners, product team, technology team and business stakeholders to identify and assess risks throughout the system lifecycle. Your Impact Success in this role requires strong collaborative relationships across Chatham. The Information Security GRC Analyst partners closely with the Manager of Information Security GRC, and Information Security leadership to align risk priorities with security strategy. The analyst will interact on a regular basis with technology and information security control owners to ensure controls are properly designed, implemented, and monitored. The analyst engages with Operational Risk to integrate technology and cybersecurity risks into the operational risk framework and reporting. Finally, collaboration with external auditors during SOC 2 and regulatory examinations validates that risk management practices meet industry standards and client expectations. Contributors to your success Bachelor's degree, preferably in Information Security, Computer Science, Risk Management, or related experience in the field. 3-5+ years of experience in IT audit, IT risk management, executing security assessments, or experience in a related Technology, IT Audit or Data Governance role. Experience in supporting/coordinating company SOC 2 Trust Services Criteria audits or conducting SOC 2 audits. Experience in conducting technology and security risk assessments using NIST, ISO 27005, or similar methodologies. Strong understanding of Cybersecurity risks and mitigation strategies as well as functional experience with threat modeling, vulnerability analysis, and risk quantification and follow through. Knowledge of security frameworks: NIST CSF, NIST 800-53, ISO 27001, Center of Internet Security (CIS), SOC 2 Trust Services Criteria, Cloud Control Matrix (CCM). Knowledge of third‑party security assessments and/or data protection/impact assessments. Excellent analytical and written communication skills. Certifications preferred: CRISC, CDPSE, CISA, CISSP, ISO 27001 Lead Auditor/Lead Implementer. Other certifications considered: CGEIT, CCSK, CompTIA Security+, CompTIA CySA+, CISSP-Associate, GIA, C/GSEC, PMP/CAPM, AWS Cloud Practitioner, Azure Cloud Practitioner. * This is a contract position working 40 hours a week. #J-18808-Ljbffr Chatham Financial

Vacancy posted 9 hours ago
Similar jobs that could be interesting for youBased on the Contract Information Security GRC Analyst in Denver, CO vacancy
  • $104.09k - $173.48k

     ...explore the universe, and connect the world. Our team is excited to meet you! Job Overview & Responsibilities At ULA, Information Security GRC Analyst 3 plays a critical role in supporting cybersecurity, assurance, and compliance activities for mission‑focused... 
    Suggested
    Hourly pay
    Permanent employment
    Full time
    For contractors
    Work experience placement
    Relocation
    Flexible hours

    United Launch Alliance

    Centennial, CO
    1 day ago
  •  ...Offensive Security Analyst (Structured / Non-Exploit) - AI Training About the Role What if your offensive security expertise could...  ...cybersecurity reasoning. This is a fully remote, flexible contract role. No exploit development required - just deep, practical... 
    Contract work
    Hourly pay
    Ongoing contract
    Freelance
    Remote work
    Flexible hours

    Alignerr

    Denver, CO
    1 day ago
  • $75.8k - $113.8k

     ...career, and contribute to a secure future for generations. Northrop...  .... As an Industrial Security Analyst – Level 2 located in Aurora,...  ...PHYSEC, COMSEC, PERSEC, OPSEC, Contract Security, Security Education,...  ...submit clearance and access information using the appropriate... 
    Contract work
    For contractors
    Work at office
    Remote work
    Relocation
    Shift work

    Northrop Grumman

    Aurora, CO
    4 days ago
  •  ...Network Security Analyst LOCATION Aurora, CO 80014 CLEARANCE TS/SCI Full Poly (Please note this...  ...measures to safeguard sensitive information. Collaborating with cross-functional teams...  ...EXPERIENCE General comment on degrees: Most contracts allow additional experience (4-5 years... 
    Suggested
    Temporary work
    For contractors
    Immediate start
    Flexible hours

    Cymertek

    Aurora, CO
    2 days ago
  •  ...Ping Identity, we believe in making digital experiences both secure and seamless for all users, without compromise. We call...  ...digital experiences, and identity and access management. Information Security Analyst As an Information Security Analyst, you will work closely... 
    Suggested
    Local area
    Worldwide
    Flexible hours

    Ping Identity

    Denver, CO
    19 hours ago
  • $60 - $65 per hour

     ...Our client, a leading organization in the technology sector, is seeking a dedicated and detail-oriented Information Security Analyst to join their dynamic team. As an integral part of the Security Operations Center (SOC), you will play a vital role in safeguarding the... 
    Hourly pay
    Weekly pay
    Temporary work
    Flexible hours

    ManpowerGroup Global, Inc.

    Denver, CO
    2 days ago
  • $50 - $60 per hour

    A leading AI firm is seeking a Securities Analyst to enhance AI models for financial decision-making. This remote position allows you to work...  ...and preferably a Masters or PhD. This is an independent contract opportunity, only available to applicants in the United States... 
    Contract work
    Remote job
    Hourly pay
    Full time
    Part time

    DataAnnotation

    Denver, CO
    4 days ago
  • Description Industrial Security Analyst - Level 5 (Staff) at Aurora, CO. 100% onsite; contractor...  ..., PHYSEC, COMSEC, PERSEC, OPSEC, Contract Security, Security Education, Investigations...  ..., and submit clearance and access information using the appropriate government database... 
    Contract work
    For contractors
    Work at office
    Relocation package

    SwiftCruit

    Aurora, CO
    2 days ago
  • $94.2k - $141.2k

     ...career, and contribute to a secure future for generations. Northrop...  .... As a Industrial Security Analyst - Level 3 or Level 4 located...  ...PHYSEC, COMSEC, PERSEC, OPSEC, Contract Security, SETA,...  ...submit clearance and access information using the appropriate government... 
    Contract work
    For contractors
    Interim role
    Work at office
    Remote work
    Relocation
    Shift work

    Northrop Grumman

    Aurora, CO
    1 day ago
  • $65k - $75k

     ...day‑to‑day tactical support to the enterprise’s second line Information Security Risk & Compliance function by executing defined control oversight...  ...activities. The Information Security Risk and Compliance Analyst performs recurring and ad hoc assessments such as user... 

    Sunflower Financial Inc.

    Denver, CO
    3 days ago
  • Chatham Financial is seeking an Information Security GRC Analyst in Denver, CO to manage security risk assessments and policy governance. This contract role involves assessing technology and cybersecurity risks, maintaining the risk register, and developing metrics to measure... 
    Contract work

    Chatham Financial

    Denver, CO
    9 hours ago
  •  ...Job Description Job Description Experienced Cyber Security Specialist sought for Canadian services company. You will be supporting...  ..., and oversee remediation of threats. · Develop and enforce information security policies and procedures. · Monitor IT... 
    Live in

    Core Talent

    Centennial, CO
    14 days ago
  • $65k - $75k

    Sunflower Financial Inc. is seeking an Information Security Risk and Compliance Analyst to provide tactical support to its compliance function. The role focuses on executing control oversight, conducting assessments, and supporting regulatory readiness. Candidates should... 

    Sunflower Financial Inc.

    Denver, CO
    3 days ago
  • $50 - $60 per hour

     ...committed to creating high-quality AI. We are looking for a Securities Analyst to join our team to help train the next generation of AI while...  ...in the United States will be considered for this role. This is an independent contract position. #J-18808-Ljbffr DataAnnotation
    Contract work
    Hourly pay
    Full time
    Part time
    Work experience placement
    Remote work
    Flexible hours

    DataAnnotation

    Denver, CO
    3 days ago
  • Alignerr is seeking a Cloud Security Analyst to work remotely on identifying and analyzing risks in cloud environments. The analyst will review...  ...security impact effectively. Flexible working hours and contract extension potential make this role appealing. #J-18808-Ljbffr... 
    Contract work
    Remote job
    Flexible hours

    Alignerr

    Denver, CO
    2 days ago
  • $27.17 - $31 per hour

    Responsibilities Protect enterprise systems and information by promptly responding to security threats and incidents, acting individually and as part of a team to resolve issues Assist in analyzing cybersecurity incidents to solve issues and improve incident handling procedures... 
    Hourly pay
    Apprenticeship
    Shift work
    Day shift

    SwiftCruit

    Denver, CO
    9 hours ago
  • $56k - $80k

     ...Job Summary Our client is seeking a Security Analyst to join a security team responsible for maintaining compliance across a lab infrastructure environment. This role focuses on validating security compliance across hardware, software, and networking components used in... 
    Local area

    KellyMitchell Group

    Englewood, CO
    2 days ago
  •  ...Governance, Risk & Compliance (GRC) Analyst (AI Training) About the...  ..., risk assessments, or security audits, your expertise is exactly...  ...Type : Hourly Contract Location : Remote Commitment...  ...workflows Background in information security, internal audit, or... 
    Contract work
    Hourly pay
    Ongoing contract
    Freelance
    Remote work
    10 hours per week
    Flexible hours

    Alignerr

    Denver, CO
    1 day ago
  •  ...In 1986, Robert L. Nelson founded the information systems consulting firm of R.L. Nelson...  ...yourself joining our team as our newest Security Analyst.SUMMARYWe are seeking a dynamic and experienced...  ...Network Detective, Compliance Manager GRC, VulScan.Strong problem-solving, and... 
    Work at office
    Local area
    Flexible hours

    Vertilocity

    Englewood, CO
    1 day ago
  • $90k - $105k

     ...Position Summary PTMA Financial Solutions is seeking an experienced, hands‑on Security Analyst to serve as a key contributor within our growing information security program. In this role, you will report directly to the Information Security Manager and work in close partnership... 

    SupportFinity

    Denver, CO
    1 day ago
  • $40 per hour

     ...technology firm is seeking experienced cybersecurity professionals to join their team remotely. This role involves evaluating AI-generated security content, solving complex cybersecurity problems, and providing crucial feedback to improve AI accuracy. Applicants should have at... 
    Hourly pay
    Remote work
    Flexible hours

    DataAnnotation

    Denver, CO
    3 days ago
  • System One in Lakewood, CO is seeking a Governance Risk & Compliance Analyst to join their Global Information Security Office. This hybrid role involves supporting security governance, risk management, and compliance programs while contributing to policy development and... 
    Work at office

    System One

    Denver, CO
    19 hours ago
  • Vertilocity in Englewood, Colorado is seeking a dynamic Security Analyst to safeguard client networks and data from cyber threats. The ideal candidate will have a strong IT consulting background and expertise in analyzing business processes, implementing technology-driven... 

    Vertilocity

    Englewood, CO
    4 days ago
  • Leprino-Foods in Denver is seeking an IT Security Analyst to enhance security measures for global dairy manufacturing. This role involves monitoring security platforms, investigating incidents, and providing strategic guidance on security tools. The candidate should have... 

    Leprino-Foods

    Denver, CO
    6 days ago
  • SwiftCruit is looking for a dedicated cybersecurity professional in Denver, CO, to protect enterprise systems and respond promptly to security threats. You'll analyze incidents, improve handling procedures, and create documentation for incidents presented to the team. The... 

    SwiftCruit

    Denver, CO
    9 hours ago
  • $90k - $110k

     ...stack, with a primary focus on AssetBacked Securities (ABS). Covered sectors include autos,...  .... Act as a Securitized Products analyst with a primary focus on ABS, while maintaining...  ...ability to synthesize large volumes of information quickly. Commitment to building and... 

    LGBT Great

    Denver, CO
    19 hours ago
  • $90k - $110k

     ..., with a primary focus on Asset‑Backed Securities (ABS). Covered sectors include autos, equipment...  ...markets. Act as a Securitized Products analyst with a primary focus on ABS, while...  ...ability to synthesize large volumes of information quickly. Commitment to building and... 

    Foreman & Associates

    Denver, CO
    2 days ago
  • SwiftCruit is hiring an Industrial Security Analyst - Level 5 in Aurora, CO. This role is 100% onsite and involves supporting security activities for classified materials at the Space Sector. The ideal candidate will have a Top Secret security clearance and extensive experience... 
    Relocation package

    SwiftCruit

    Aurora, CO
    2 days ago
  • $40 per hour

    A leading cybersecurity company is seeking experienced professionals to evaluate AI-generated content and solve cybersecurity problems. This remote position allows flexibility in project choice and schedule, with compensation starting at $40 per hour. Candidates should ...
    Remote job
    Hourly pay

    DataAnnotation

    Denver, CO
    4 days ago
  • A leading aerospace and defense company is seeking an Industrial Security Analyst - Level 2 for its Aurora, CO location. This role involves ensuring security compliance with government regulations, supporting classified programs, and managing security operations. Candidates... 

    Northrop Grumman

    Aurora, CO
    19 hours ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Contract Information Security GRC Analyst. Be the first to apply!