Information Security GRC Analyst

Description

Title: Information Security GRC Analyst

Location: Chandler, AZ

Charlotte, NC

Duration: 12 months

Work Engagement: W2

Work Schedule: Hybrid 3 days in office/2 days remote

Benefits on offer for this contract position: Health Insurance, Life insurance, 401K and Voluntary Benefits

Summary:

In this contingent resource assignment, you may: Participate in low to moderately complex initiatives and identify opportunity for process improvements within Information Security Analysis. Review and analyze basic or tactical Information Security Analysis assignments or challenges that require research, evaluation, and selection of alternatives, related to low-to-medium risk deliverables. Present recommendations for resolving low to moderately complex situations and exercise some independent judgment while developing understanding of function, policies, procedures, and compliance requirements. Provide information to client personnel in Information Security Analysis.

Key Responsibilities:

· Support information security governance activities to improve compliance with Enterprise Information Security policies, processes, and standards
• Assist with remediation of security assessment findings, including tracking, validation, evidence review, and follow‑up
• Support review of assessment results and mitigating controls under guidance from more experienced staff
• Participate in security control testing activities and consultation with application, governance, policy, and technical teams
• Perform data aggregation, analysis, and reporting to support information security risk management
• Deliver existing Information Security education and awareness materials by guiding stakeholders to approved policies, standards, and desktop procedures
• Review draft control standards and provide feedback on clarity and documented requirements
• Maintain accurate, timely, and audit‑defensible documentation and reporting artifacts
• Update and maintain Jira tickets, including workflow status, comments, evidence, and remediation tracking
• Collaborate with peers, managers, and internal stakeholders to resolve issues and meet defined governance outcomes

·

Required Qualifications:

· Applicants must be authorized to work for ANY employer in the U.S. This position is not eligible for visa sponsorship.

· Cybersecurity, information security, Governance, Risk and Controls (GRC), or IT risk management experience
• Experience supporting security assessments, compliance reviews, or remediation activities
• Experience working in regulated enterprise environments with documented risk or audit expectations
• Experience supporting metrics, dashboards, or reporting activities
• Strong attention to detail with demonstrated ability to follow established procedures
• Demonstrated ability to follow defined processes while maintaining high standards for accuracy and completeness
• Clear written and verbal communication skills suitable for technical and governance audiences
• Ability to manage assigned work independently while seeking guidance when appropriate

Required Tools & Skills:
• Jira (required) – working knowledge including updating tickets, maintaining workflow hygiene, documenting evidence, and supporting audit traceability
• Microsoft Excel (data analysis, reconciliation, validation)
• Microsoft PowerPoint (summaries and reporting materials)
• Experience with enterprise metrics, data, and reporting platforms
• Ability to document and communicate information security requirements and risks clearly in writing
• Experience using enterprise‑approved generative AI tools with understanding of appropriate use and human‑in‑the‑loop expectations

Desired / Preferred Skills
• Microsoft Lists for tracking, documentation, or evidence management
• Power Automate for workflow or notification support
• Information protection or data security experience
• Audit or regulatory support experience