Principal Infosec Grc Control Validation Analyst(governance, Risk & Compliance)

152

Hybrid
8+ years experience in grc or it audit
Lead it control testing teams
Iso 27001 soc2 nist audit expertise
This role serves as the most senior member of a small team focused on validating the effectiveness of information security controls across the enterprise

Job Summary

  • This role serves as the most senior member of a small team focused on validating the effectiveness of information security controls across the enterprise.
  • The ideal candidate will have 8 or more years of experience in GRC, IT audit, or cybersecurity operations with a proven track record of leading audit testing teams.
  • Responsibilities include mentoring junior analysts, documenting control issues, and preparing risk reports for information security management committees.

Matching Summary

This role serves as the most senior member of a small team focused on validating the effectiveness of information security controls across the enterprise.

Skills & Requirements

Must-have

  • 8+ years experience in GRC or IT audit
  • Lead IT control testing teams
  • ISO 27001 SOC2 NIST audit expertise
  • Plan and execute security control validation
  • Develop remediation recommendations

Nice-to-have

  • Mentoring junior analysts
  • Driving continuous improvement culture
  • Influencing GRC program evolution
  • Effective communication without jargon
  • Passion for governance and risk

Key Requirements

  • Bachelor's degree in technical field
  • CISSP CISA CRISC Sec+ CC certification preferred
  • Minimum 8 years experience in GRC or IT audit
  • Experience leading ISO 27001 SOC2 NIST audits

Work Rights

Not specified

Tailored Resume

Cover Letter