GRC Analyst
University of Oklahoma · Oklahoma City, OK · 6 days ago
Business Development$46k–$60k/yrFull-time
About the role
The GRC Analyst is responsible for performing governance, risk, and compliance tasks related to end user devices. This includes researching industry compliance regulations and policies to recommend baseline security standards, conducting risk analysis, monitoring compliance with regulations and institutional policies, providing actionable guidance to users or IT employees to remediate compliance gaps, and creating procedures for IT employees and training materials related to secure endpoint management.
Responsibilities
- Research industry compliance regulations and policies to recommend baseline security standards
- Conduct risk analysis
- Monitor compliance with regulations and institutional policies
- Provide actionable guidance to users or IT employees to remediate compliance gaps
- Create procedures for IT employees and training materials related to secure endpoint management
Requirements
- A Bachelor's Degree in Computer Science, Information Technology, or related field
- Experience or a combination of education & related experience can be considered in lieu of degree
- Ability to perform effectively in high-pressure, fast-paced environments
- In-depth understanding of cybersecurity frameworks and standards
- Strong verbal and written communication skills, with the ability to convey complex information clearly to both technical and non-technical audiences
- Excellent interpersonal and mentoring skills, with the ability to teach and guide others
- Familiarity with regulatory and compliance requirements
- Understanding of network and system architecture, including common security configurations and vulnerabilities
- Strong analytical and problem-solving skills for identifying security risks and evaluating mitigation strategies
- Skilled in using risk assessment and compliance tools, vulnerability scanners, and GRC platforms
- Ability to effectively interpret and apply security policies, procedures, and technical standards
- Ability to assess technical environments for compliance with security and privacy requirements
- Ability to maintain confidentiality and handle sensitive information with discretion
- Ability to adapt to changing technologies, threats, and regulatory landscapes
Qualifications
Commensurate with experience.
Skills
- Security frameworks and standards
- Verbal and written communication
- Interpersonal and mentoring skills
- Regulatory and compliance requirements
- Network and system architecture
- Risk assessment and compliance tools
- Security policies, procedures, and technical standards
- Technical environments for compliance
- Confidentiality and handling sensitive information
- Adapting to changing technologies, threats, and regulatory landscapes
Benefits
Eligible
Pay
Targeted salary $45,600 - $60,400 annually, depending on education and experience
Schedule
Monday – Friday, Standard/Fixed Schedule
Travel
May be required
Hiring Contingent Upon a Background Check
Yes