Remote IT/Security GRC Analyst - Entry Level
IT/ Security GRC Analyst (Entry Level)
Job Summary
Hotman Group has an opportunity for an entry level IT/Security GRC Analyst where we will train the right person. The right person meets the below knowledge, skills, abilities, requirements, and is interested in a career in cybersecurity.
To be considered for the position, please complete the questionnaire at
https://hotmangroup.com/grc-analyst-entry-level
No calls or agencies please.
Location: Remote (anywhere within the U.S.)
Schedule: Flexible, with the ability to work within normal business operating hours.
Duration: Contract or 6+ month contract to permanent, part- or full-time
The IT/Security Governance, Risk, and Compliance (GRC) Analyst (Entry Level) will be supporting our senior partners to provide back-end support for security/ IT controls, assessments, analysis, risk, audits, GRC tools, policies, processes, industry frameworks, privacy, and Hotman Group functions.
Responsibilities
- Drafting initial policies, procedures, and processes based on instruction around assessment and/ or compliance framework requirements
- Assisting in translating compliance guidance and assessment results into plain English that is understandable and actionable
- Tracking for non-compliance with applicable controls, and monitoring remediation
- Assisting in initially assessing the adequacy of the security/ IT controls for the client's environment and business objectives
- Working with various client GRC tools, including data imports/ exports
- Evaluating new and existing technologies that might satisfy security/ IT controls
- Assisting on other back-end risk, compliance, controls, assessment, security duties for Hotman Group or client support as assigned
Knowledge, Skills, and Abilities
- Strong ability to follow instructions, ask intelligent questions, and engage critical thinking skills to complete the work
- Strong ability and willingness to listen, learn, and adopt new practices/ understanding to get done what’s needed
- Ability to manage multiple tasks simultaneously without missing deadlines or dropping assignments
- Ability to adapt quickly and without frustration to changing priorities and emphasis
- Strong attention to detail and high commitment to quality
- Good attitude and courtesy to work with a small, fast-paced team
- Efficient worker looking for ways to gain efficiencies and maximize time spent
- Passionate about cybersecurity, risk, and compliance to make companies more secure and healthy in protecting their data
Requirements
- Bachelor or Graduate degree in a cybersecurity, information systems, or related field
- Technical skills: Excel (including advanced functions like VLOOKUP), Word, PowerPoint
- Familiarity and knowledge of fundamental security/ IT concepts (e.g., retention, data classification, change management, access control, asset management, third party risk)
- Familiarity and knowledge of common security frameworks (e.g. ISO, NIST, SOC 2)
- Technical aptitude to be able to learn new technologies with little instruction
- Strong written and verbal skills
- Prefer experience working (or an advanced degree) in a complementary field that would translate similar skill-set to a career in cybersecurity
- Genuine interest and willingness to work hard for the long haul to pursue a career in cybersecurity/GRC
- Previous professional work experience required
- Candidate must have permanent authorization to work in the USA for any employer
About Hotman Group, LLC
Hotman Group is a growing boutique consulting firm that helps business leaders with integrity gain the trust of their customers by creating a comprehensive cybersecurity roadmap. We offer fractional cybersecurity strategy and program development with the expert advisory guidance; fully managed programs to execute, implement, and remediate programs; and everything in between with one-time projects like policies, audits, questionnaires, risk assessments, incident response plans, testing, third party vendors, and other cybersecurity or compliance challenges.