GRC Analyst
Allied Benefit Systems
Job Overview
Who's the hiring manager?
Sign up to PitchMeAI to discover the hiring manager's details for this job. We will also write them an intro email for you.
Job Description
Position Summary
The GRC Analyst provides support for the development, implementation, and maintenance of security controls, working cross-functionally to ensure regulatory compliance requirements are met, managing risk, and maintaining a strong security posture.
Essential Functions
- Assist in the development, update, review, and maintenance of security and compliance policies, standards, guidelines, and procedures.
- Support internal and external audits (e.g. SOC 2, HIPAA)
- Track and maintain alignment of controls with industry frameworks (e.g. SOC 2, HIPAA, NIST CSF) using Drata
- Optimize Drata environment, automating controls and reporting
- Assist with regulatory reporting and compliance documentation
- Conduct vendor risk assessments and due diligence reviews
- Monitor third-party compliance with regulatory obligations
- Track remediation efforts and ensure timely closure of findings
- Conduct risk assessments and support risk mitigation planning
- Maintain risk register and support risk tracking and reporting
- Monitor user adherence to acceptable use, least privilege access, and data retention and security policies
- Promote company culture of security and compliance awareness
Education
A B.S. or equivalent in Computer Science, Information Science & Technology, or a related field, or equivalent work experience, is required. Security certifications are highly desired.
Experience & Abilities
- At least three years experience in Governance, Risk, and Compliance work required.
- Experience working in a highly regulated environment
- Experience in HIPAA, HITECH, and SOC 2 compliance environments
- Experience working with GRC platforms, such as Drata
- Familiarity with NIST SP 800 series, ISO/IEC 27000 series, and similar frameworks.
- Excellent oral, written, and interpersonal skills with the ability to influence and work effectively with diverse groups of peers and business partners
- Detail oriented with a demonstrated ability to work on multiple tasks simultaneously with strong organizational and prioritization skills
Position Competencies
- Job Knowledge
- Time Management
- Accountability
- Communication
- Initiative
- Customer Focus
Work Environment & Benefits
This is a remote, standard desk role. Allied Benefit Systems values Total Rewards, offering a competitive Benefit Package including Medical, Dental, Vision, Life & Disability Insurance, Generous Paid Time Off, Tuition Reimbursement, EAP, and a Technology Stipend. Compensation is contingent upon qualifications and successful interview process.
Key skills/competency
- Governance Risk Compliance (GRC)
- Regulatory Compliance
- Risk Management
- Security Controls
- HIPAA Compliance
- SOC 2 Compliance
- NIST CSF
- Drata Platform
- Vendor Risk Assessment
- Policy Development
How to Get Hired at Allied Benefit Systems
- Research Allied Benefit Systems's culture: Study their mission, values, recent news, and employee testimonials on LinkedIn and Glassdoor.
- Tailor your resume for GRC Analyst: Highlight experience in HIPAA, SOC 2, and GRC platforms like Drata.
- Prepare for behavioral questions: Focus on accountability, initiative, and cross-functional communication relevant to GRC.
- Showcase your technical GRC expertise: Be ready to discuss experience with NIST, ISO, and regulatory compliance frameworks.
- Network within the industry: Connect with current or former Allied Benefit Systems employees on LinkedIn for insights.
Frequently Asked Questions
Find answers to common questions about this job opportunity
Explore similar opportunities that match your background