Cybersecurity GRC Analyst

Cleveland Brothers

$70K — $95K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science or related field/equivalent experience
  • Strong understanding of GRC concepts
  • Knowledge of cybersecurity frameworks like NIST CSF, SOC 2, CIS
  • Experience in developing and maintaining policies, standards, and procedures
  • Ability to interpret regulatory security requirements
  • Strong organizational skills with attention to detail
  • Proficiency in tracking controls and remediation activities
  • Ability to communicate technical concepts to non-technical audiences

Responsibilities

  • Manage cybersecurity compliance programs
  • Develop and update security policies and standards
  • Coordinate audit readiness and evidence collection
  • Conduct compliance risk assessments and maintain risk register
  • Track control maturity and compliance status
  • Collaborate with IT and business teams to implement controls
  • Translate regulatory requirements into internal standards
  • Support audits and compliance training programs

Benefits

  • Comprehensive health benefits: medical, dental, vision, life insurance
  • 401(k) with company match and profit sharing
  • Access to short- and long-term disability insurance
  • Health savings account and generous PTO
  • Pathways for career advancement across 29 locations
  • Stable, long-term employment with a reputable organization
Full Job Description
Position Summary:

The Cybersecurity GRC role is responsible for establishing, maintaining, and validating governance, risk, and compliance programs that ensure the organization meets cybersecurity, regulatory, and contractual requirements. This role translates security frameworks and obligations into policies, standards, evidence, and repeatable processes, enabling audit readiness and informed risk based decision making across the business.

Primary Responsibilities:
  • Manage cybersecurity compliance programs.
  • Develop, maintain, and update security policies, standards, and procedures.
  • Coordinate and maintain audit readiness, including evidence collection and tracking.
  • Conduct cybersecurity and compliance risk assessments and maintain the enterprise risk register.
  • Track control maturity, remediation activities, and compliance status.
  • Partner with IT, Cybersecurity, and business teams to facilitate and ensure controls are implemented and operating as intended.
  • Translate regulatory and contractual requirements into actionable internal requirements.
  • Support internal and external audits, assessments, and reviews.
  • Support security awareness training programs.
  • Prepare executive-level compliance, risk, and status reporting.
  • Assist with incident response from a compliance and documentation perspective.
  • Promote consistent governance and documentation practices across teams.
  • Other duties as required.

Skills / Knowledge / Qualifications:
  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science or related field/equivalent practical experience
  • Strong understanding of cybersecurity governance, risk, and compliance (GRC) concepts.
  • Working knowledge of cybersecurity frameworks (e.g. NIST CSF, SOC 2, CIS, etc.).
  • Experience developing and maintaining policies, standards, and procedures.
  • Ability to interpret regulatory and contractual security requirements.
  • Strong organizational skills with attention to detail.
  • Experience tracking controls, evidence, and remediation activities.
  • Ability to work cross-functionally with technical and non-technical teams.
  • Strong written communication skills, especially for documentation and executive reporting.
  • Analytical mindset with the ability to assess and articulate risk.
  • Ability to document technical controls, standards, and procedures clearly.
  • Strong verbal and written communication skills, with the ability to explain technical concepts to non-technical audiences.


Why Join the Cleveland Brothers Team
  • Market Leading Benefits Package: Medical, dental, vision, life insurance, 401(k) match, short- and long-term disability, health savings account, PTO, Profit Sharing Account.
  • Advancement: Take your career to the next level with a dynamic organization that wants to see you succeed! In addition to room to grow in this role, there are limitless opportunities across 29 locations whether you want to move up, or into another division of the company.
  • Stability - Cleveland Brothers has been around for 75 years. Experience tremendous job security in an essential role with an organization that is around for the long haul.

Similar Jobs

More Jobs at Cleveland Brothers

More Information Technology Jobs

Find similar Cybersecurity GRC Analyst jobs: