Contact
Telegram

Senior Information Security Governance, Risk & Compliance Analyst

Locke and McCloud United State
Remote
Apply
AI Summary

Locke and McCloud is seeking a Senior Information Security Governance, Risk & Compliance Analyst to build, automate, and optimize GRC workflows using tools such as Excel, Power BI, and O365. The ideal candidate will have a strong background in building automated reports, dashboards, and workflows, and experience enhancing or administering GRC platforms.

Key Highlights
Build, automate, and optimize GRC workflows using tools such as Excel, Power BI, and O365
Develop automated dashboards, reports, and metrics to provide real-time visibility into risk, compliance, and policy performance
Maintain and improve the organization's GRC platform, driving efficiency through automation and SLA-based task management
Technical Skills Required
Excel Power BI O365 HIPAA HITECH NIST ISO 27001 risk management methodologies
Benefits & Perks
Salary: $95,000–$140,000
Fully Remote Work

Job Description


Information Security Governance, Risk & Compliance Analyst

Compensation: $95,000–$140,000

Location: Fully Remote


We're partnered with a leading healthcare organization seeking a GRC Analyst with a strong focus on automation and tooling. This role is ideal for someone who enjoys streamlining workflows, building automated reporting, and enhancing enterprise GRC processes through data-driven insights and technical solutions.


Key Responsibilities


  • Build, automate, and optimize GRC workflows using tools such as Excel (advanced), Power BI, and O365.
  • Develop automated dashboards, reports, and metrics to provide real-time visibility into risk, compliance, and policy performance.
  • Maintain and improve the organization’s GRC platform, driving efficiency through automation and SLA-based task management.
  • Create scalable processes for policy management, regulatory tracking, and compliance mapping.
  • Identify opportunities to enhance GRC operations using data, templates, macros, scripts, and system integrations.
  • Conduct and automate third-party/vendor risk assessments and maintain a structured risk register.
  • Oversee security exception workflows and ensure consistent documentation and approval processes.
  • Support audits and internal reviews by producing accurate, automated reports and evidence packages.
  • Collaborate with IT and business stakeholders to promote streamlined and efficient security practices.


Qualifications


  • 10+ years of IT experience, including 5+ in Information Security or GRC.
  • Strong background in building automated reports, dashboards, and workflows (Power BI, advanced Excel, O365).
  • Experience enhancing or administering GRC platforms and integrating data sources.
  • Deep understanding of HIPAA, HITECH, NIST, ISO 27001, and risk management methodologies.
  • Certifications (3+ preferred): Security+, CCSP, CISA, CISM, CRISC, CISSP, GIAC, Network+, ITIL, Project+.
  • Excellent analytical and communication skills; able to translate data into actionable insights.


Interviews are scheduled to take place next week so if you’re interested in hearing more about this and other roles, then please get in touch asap to discuss further at +1 480-658-0991 or send your Resume to b.maher@locke-mccloud.com


Apply Now
Job Overview
Posted Date Dec 11, 2025
Employment Type Full-time
Experience Level Mid-Senior level
Location United State
Category Cyber Security
Company Locke and McCloud
Mentioned Skills
cisa hipaa cism cissp ccsp sla nist itil o365 network+ power bi excel security practices
Industries
information services and hospitals and health care

Subscribe our newsletter

New Things Will Always Update Regularly