Dow Jones

Cyber GRC Analyst

Dow Jones$80K — $110K *
Austin, TX 78745In-Person
Information Technology
Less than 5 years of experience
1 week ago
Job Overview by Ladders

Qualifications

  • 3+ years of experience in Cyber Security or related fields
  • Proven expertise in governance, risk and compliance in complex environments
  • Strong knowledge of NIST CSF, PCI DSS, and ISO 27001 frameworks
  • Familiarity with AWS cloud infrastructure
  • Experience in a SOX compliance environment preferred
  • Excellent oral and written communication skills
  • Degree in Information Security, Computer Science, Engineering or similar field and relevant security certifications preferred.

Responsibilities

  • Collaborate with stakeholders to ensure compliance with PCI DSS, Privacy, and GDPR
  • Assist in enterprise-wide and third-party risk assessments
  • Support implementation of key security initiatives
  • Manage audits and assessments including PCI DSS and NIST CSF
  • Develop metrics to track cyber risks and GRC effectiveness
  • Conduct compliance readiness assessments and ensure adherence to policies
  • Manage the cyber security risk register and track audit findings

Benefits

  • Comprehensive health coverage
  • Retirement plans with employer contributions
  • Wellness programs and resources
  • Flexible work arrangements including hybrid options
  • Diverse optional benefits tailored to employee needs
Full Job Description

Job Description :

Governance, Risk and Compliance (GRC) Analyst

Location - Austin Texas

Hybrid - 3 Days in office

The Governance, Risk and Compliance (GRC) Analyst will have a good understanding of
security and privacy principles as well as a sound understanding of regulatory and
compliance requirements affecting a US business.

As a GRC analyst your roles will support and maintain the Realtor.com Cyber GRC Program
along with the BISO and central GRC function, including the development, implementation
and maintenance of cyber security policies, standards, guidelines and processes to ensure
compliance is maintained and risk is managed.

What’s the role?
● Work with key internal and external stakeholders to ensure compliance with PCI
DSS, Privacy and GDPR compliance requirements, audits and assessments.
● Assist in the risk assessment process and report on enterprise-wide and third-party
security controls
● Support in the implementation of key security initiatives across the organisation
● Support management of audits, external assessments and assurance processes
including, but not limited to PCI DSS and NIST CSF
● Develop and manage meaningful metrics to measure and track cyber risks and the
effectiveness of the governance, risk and compliance function
● Conduct compliance readiness assessments and assurance activities against
policies, standards requirements
● Track technology and cyber related audit findings and actions
● Assist with the development of measurable cyber security standards that align with
policy control objectives
● Support user and specialist user education and awareness exercises for employees
● Assist in the development of effective measurement and simplified reporting of cyber
security risks within the business
● Assist with third party security assessments against industry standards as well as
News UK control standards
● Assist in maintaining the cyber security risk register

Who are you?
● 3+ years’ experience within Cyber Security or related fields
● Demonstrated experience in governance, risk and compliance in dynamic and
complex cyber security, technology and business environment
● Strong knowledge and experience with Industry Frameworks and Standards such as
NIST CSF, PCI DSS and ISO 27001
● Good working knowledge of Cloud infrastructure, especially AWS
● Previous experience working in a SOX compliance environment is desirable
● Strong oral and written communication skills
● Qualification in Information Security, Computer Science, Engineering or similar
● Professional security certifications such as Certified Information Systems Security

Professional (CISSP), Certified Information Security Manager (CISM), Certified
Information Systems Auditor (CISA), Certified in Risk and Information Systems
Control (CRISC) or similar preferred

Base Pay Range: $80,000 - $110,000 + Bonus

We’re committed to offering competitive and flexible compensation to attract top talent. This pay range reflects our good faith estimate for the role and may vary based on a candidate’s experience, skills, location, and other relevant factors.

For bonus-eligible roles, targets are determined based on multiple considerations, including market benchmarks and individual contributions.

For benefits-eligible roles, we offer a comprehensive and competitive benefits package covering health, retirement, wellbeing, and more, along with optional benefits to meet the diverse needs of our employees.

About Dow Jones

Dow Jones is a global provider of news and business information, delivering content to consumers and organizations around the world across multiple formats, including print, digital, mobile and live events. Dow Jones has produced unrivaled quality content for more than 130 years and today has one of the world?s largest news gathering operations globally. It produces leading publications and products including the flagship Wall Street Journal, America?s largest newspaper by paid circulation; Factiva, Barron?s, MarketWatch, Mansion Global, Financial News, Dow Jones Risk & Compliance, Dow Jones Newswires, and Dow Jones VentureSource.
Learn more about Dow Jones
Size
7,800 employees
Industry
Media
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at Dow Jones

More Information Technology Jobs

Find similar Cyber GRC Analyst jobs:

NationwideAustin, TX