[Remote] Cyber Security Analyst
Note: The job is a remote job and is open to candidates in USA. S Piper Staffing LLC is seeking a Senior Cybersecurity Governance, Risk, and Compliance (GRC) Analyst to support their Information Security team. This role involves advancing GRC maturity, supporting Privacy Operations initiatives, and assisting with annual PCI compliance activities.ResponsibilitiesSupport Governance, Risk, Compliance (GRC) and Privacy Operations teams with day-to-day program activities and strategic initiativesAssist with preparation, coordination, and support of annual PCI compliance auditsMaintain and enhance the organization's common control framework to ensure controls remain current, effective, and consistently appliedMonitor compliance with cybersecurity standards and requirements through control testing, assessments, and reviewsDocument findings, identify control gaps, communicate risks, and track remediation efforts through resolutionDevelop and maintain information security risk registers and support enterprise risk reporting activitiesConduct third-party security and compliance assessments and provide risk-based recommendationsBuild and maintain metrics, dashboards, and reporting that communicate compliance performance, risk trends, and program effectivenessImprove and streamline governance, risk, compliance, and privacy processes through documentation, automation, and process optimizationSupport AI governance, privacy, and security review activities by identifying risks, recommending safeguards, and helping implement appropriate controlsPartner with business and technical stakeholders to align security, privacy, and compliance requirements with organizational objectivesMonitor changes in laws, regulations, industry standards, and emerging cybersecurity risksSkills6+ years of progressively responsible experience in Governance, Risk & Compliance (GRC), information security risk management, audit, compliance, privacy, or internal controls4+ years of experience supporting PCI compliance programs, assessments, and auditsDemonstrated experience building, enhancing, or maturing GRC programs, frameworks, and processes2+ years of experience supporting privacy programs, privacy operations, or privacy compliance initiativesExperience designing, testing, documenting, and assessing security or technology controls, including identifying gaps and driving remediation efforts to closureStrong knowledge of cybersecurity, risk, and compliance frameworks such as NIST, ISO 27001, SOC 2, and third-party risk management practicesExperience developing risk metrics, dashboards, and leadership-ready reportingWorking knowledge of AI governance and associated risk areas, including data privacy, model security, third-party AI usage, bias and fairness considerations, and human oversight requirementsExperience supporting AI governance, privacy, or security reviews, including AI/GenAI vendor assessments, model risk considerations, AI policy development, or controls implementationExperience supporting modern cloud and SaaS environmentsExperience using GRC platforms and related governance, risk, compliance, workflow, or reporting toolsExperience with Onspring or similar GRC platformsProfessional certification such as CISSP, CISA, CRISC, CISM, or equivalentStrong written and verbal communication skills with the ability to communicate effectively across technical and non-technical audiencesHighly organized with strong attention to detail and the ability to manage multiple priorities simultaneouslyProven ability to collaborate across teams, influence stakeholders, and work effectively in a fast-paced environmentComfortable navigating ambiguity and helping define scalable processes and best practicesCompany OverviewS Piper Staffing is an industry-leading nationwide woman owned minority recruiting firm that identifies talented job seekers whose interests and values align with those of their prospective employers. It was founded in 2019, and is headquartered in Seattle, Washington, USA, with a workforce of 2-10 employees. Its website is https://spiperstaffing.com.