GRC Associate

How you’ll make an impact: 

As a GRC Associate at Strata, you’ll play a pivotal role in safeguarding information and supporting compliance programs that directly contribute to earning customer trust and strengthening our security posture.  This role offers a unique opportunity to build expertise in IT compliance and governance while providing a strong foundation for building future-facing skills and continued career growth. The GRC Associate will be a key contributor to policy management, audit readiness, and process improvements, driving efficiency across compliance and risk operations.  

Key Responsibilities: 

• Internal Audit & Control Testing: Lead and support internal audit activities by executing control tests, validating evidence, and documenting results to confirm compliance effectiveness. 

• Manage Due Diligence Questionnaires (DDQs): Own responses to client and vendor DDQs utilizing response automation software to ensure accuracy, completeness, and timely delivery. 

• Respond to General Employee GRC Requests: Serve as the first point of contact for internal GRC-related inquiries, providing guidance and resolution support while adhering to organizational policies. 

• Policy Management: Lead efforts to maintain, update, and track organizational policies; ensure proper version control and timely reviews; collaborate with IT, Security and business teams to align policies with regulatory and certification standards. 

• Data Mapping: Responsible for coordinating efforts to identify, document, and maintain data flows across systems to support compliance with privacy, security, and regulatory frameworks. 

• Certification Support: Contribute to maintaining key certifications such as HITRUST, ISO 27001, and SOC reports through audit preparation and evidence collection. 

• Continuous Improvement: Identify gaps and recommend process improvements in GRC workflows to enhance efficiency and compliance outcomes. 

• AI and Automation: Leverage AI to streamline DDQ responses and boost process efficiency while shaping the controls that keep innovation secure and compliant.  

What we’re looking for: 

• Minimum 2 years of experience with a concentration in IT Governance, Risk, or Compliance  

• Experience implementing IT frameworks and achieving industry certifications  

• Excellent communication skills including the ability to communicate technical issues to users with little technical background/expertise  

• Mastered knowledge in: 

• Microsoft office suite 

• Technical writing 

• Internal/External auditing  
• AI-driven process optimization 

Estimated Salary Range: $60,000-74,000

Actual salary will be determined based on factors including, but not limited to, skill set and level of experience. This salary range is a good faith estimate of base pay. Strata also provides discretionary variable pay programs based on role. In addition, Strata provides a comprehensive benefits package including retirement benefits, health and welfare benefits, paid time off, parental leave, life and accident insurance, and other voluntary and well-being benefits.

Find out more about Strata benefits here.  

How we work:
The preferred location for this role is in Chicago, IL or St. Louis, MO. We value our people spending time together and have campuses hosting in-person events located in both cities. We are truly a hybrid environment with all team members experiencing the flexibility to work from home. 

Thinking about applying?  
Research shows that women and underrepresented groups tend to apply to jobs only when they check every box on a job posting. If you’re currently reading this and hesitating to click “Apply” for that reason, we encourage you to go for it! A true passion and excitement for making an impact is just as important as work experience.

Should you require a reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please reach out to careers@stratadecision.com. 

Here @ Strata… 
Our culture is driven by our people solving problems together. We embrace learning, collaboration, and continuous career growth. Together, we lift our customers, our products, our company, and our community.  

We believe that each of our team member’s unique perspectives and experiences is what drives innovation and positive change. Our individual differences are what make us a more forward-thinking organization. We foster a culture of inclusion, equity and belonging, regardless of race, religion, disability, sex, sexual orientation, gender identity or national origin.  

Our Core Values:
While we celebrate what makes each member of our team unique, our core values are what connect us. They set clear expectations for how we approach our work and how each of us can positively influence the experience of our team and our customers.

• We connect with positive intent.
• We are helpful.
• We own it.
• We get better every day.
• We are humble.