Law Firm
Philadelphia, PA
Legal Staff Information Technology in Philadelphia, PA
Legal Staff
No
Law Firm Seeking Governance, Risk, and Compliance Analyst in Major Cities
***Salary: $70,000 - $90,000 (dependent on experience and location)***
H1: Join Our Team as a Governance, Risk, and Compliance Analyst in Major Cities
H2: Protecting Data and Systems - The Role of a GRC Analyst
As a Governance, Risk, and Compliance (GRC) Analyst at our law firm, you will play a crucial role in ensuring that our firm's security policies, standards, and controls are in line with industry best practices. Your expertise in cybersecurity and risk management will be leveraged to consult with other members of our firm and inform them on potential risks to our systems and data. Your responsibilities will include incorporating GRC functions into key firm programs and ensuring that risk mitigation measures are functioning effectively.
H2: Essential Job Duties
- Governance
- Develop and manage cyber security policies, standards, and procedures based on industry frameworks such as NIST and CIS controls.
- Evaluate current platforms for compliance with security and configuration standards.
- Collaborate with key security personnel to align expectations and remediation activities with best practices.
- Work closely with the IT team to identify and resolve cybersecurity risks in a timely manner.
- Assist in implementing information security awareness and training programs.
- Process exceptions to information security policies and standards.
- Administer identity governance and administration activities.
- Incorporate audit findings, legal obligations, compliance, and regulatory requirements into policy development.
- Manage the transfer of data within the firm and implement ethical walls.
- Risk
- Measure and monitor cybersecurity risk.
- Prioritize risk exceptions.
- Conduct risk assessments and provide feedback to stakeholders.
- Assist in business impact analysis for systems, applications, and processes.
- Develop and deploy cyber resilience plans, including incident response and business continuity.
- Participate in Third Party Risk Management Program activities.
- Compliance
- Stay up-to-date on security standards, state and federal regulations, and legislation related to information security.
- Identify regulatory changes and recommend necessary updates to policies and procedures.
- Participate in internal and external compliance audits and respond to security questionnaires.
- Provide guidance to management and business stakeholders on security implications of regulations and policies.
- Assist with compliance reviews as assigned by management.
H2: Minimum Requirements
- Understanding of common security regulations and frameworks.
- Knowledge of information security risk management and compliance practices.
- Familiarity with security auditing and risk assessment processes.
- Strong communication skills, both written and verbal, with the ability to effectively communicate complex security concepts to technical and non-technical audiences.
- Proficiency in developing incident response playbooks and conducting tabletop exercises.
- Solid understanding of business management and expertise in information/cybersecurity risk management and governance.
- Experience with information security audits and responding to them.
- Basic knowledge of general security concepts, including cryptography, DLP, Security Operations Center, Security Managed Services, and more.
H2: Other Expectations
- Ability to follow instructions, ask intelligent questions, and think critically to complete tasks.
- Self-motivated and able to work independently.
- Strong team player.
- Willingness to take direction and provide direction when needed.
- Ability to identify and escalate risks to higher levels of leadership.
- Able to work independently and make daily progress.
- Efficient and able to manage multiple tasks without missing deadlines.
- Flexible and adaptable to changing priorities.
- Detail-oriented with a commitment to quality.
- Positive attitude and able to work with a fast-paced team.
- Always looking for ways to improve efficiency and maximize time.
H2: Benefits
- Paid time off.
- Health, vision, and dental insurance.
- 401k with employer match.
- Life insurance.
- And more. Please contact us for a comprehensive list of benefits.
H2: Our Commitment to Diversity and Inclusion
At our law firm, we believe in recruiting, developing, and retaining talented individuals from all backgrounds. We take pride in fostering a culture of inclusion where everyone feels respected, treated fairly, and has the opportunity to reach their full potential. To learn more about our Diversity and Inclusion efforts, please visit our website.
H2: Requirements
- Candidates must have permanent authorization to work in the United States.
- **Members Only** is an Equal Opportunity Employer.
H2: Apply Now
Click on the link below to apply for this exciting opportunity to join our team as a Governance, Risk, and Compliance Analyst in major cities across the United States.
Click here to apply
H2: Contact Us
For more information, please email .
Jun 15, 2025
|
Apr 02, 2025
|
Tell us where to send your access instructions: