Enpro is currently seeking a Governance, Risk, & Compliance (GRC) Analyst to join our corporate Information Security Team based in Charlotte, NC. Reporting to the Director of Information Security, the GRC Analyst will be responsible for driving the execution of the GRC strategy by managing security and compliance framework control adherence, supporting regulatory compliance requirements, leading and tracking security awareness initiatives, and tracking key security metrics and KPIs. The candidate will work closely in collaboration with Enpros Compliance, Legal, and Internal Audit Teams to ensure alignment on business priorities and to effectively manage enterprise cyber risks. This role requires a balanced understanding of cybersecurity, privacy, compliance, and information security industry frameworks.
The ideal candidate is someone who understands technology, possesses deep experience in GRC concepts, is a self-starter, and is adept at understanding information security and regulatory compliance frameworks and their relevant security controls. The GRC Analyst must be process oriented and not be driven solely by compliance.
We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to
HR@insightglobal.com.
To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy:
https://insightglobal.com/workforce-privacy-policy/ .
- 5+ years of related GRC/information security experience required
- Prior experience supporting GRC platforms from vendors such as AuditBoard, LogicGate, Archer, MetricStream etc.
- Self-starter, capable of driving initiatives to completion with minimal supervision
- Demonstrated ability to manage complex GRC security initiatives with a global scope and international requirements
- Deep knowledge working with frameworks such as ISO27001/27002, NIST 800-171, NIST 800-53, etc.
- Highly trustworthy; leads by example
- Bachelors degree in computer science, information assurance, MIS or related field, or equivalent industry experience
- Possess industry certifications (CISSP, CRISC, CGEIT, IAPP, CISA, GRCP)
- Preferred experience with cloud environments such Amazon Web Services (AWS) and Microsoft Azure
- Familiarity with state, federal and international privacy laws
- Experiencing supporting industry and regulatory compliance frameworks such as PCI, ISO, DFARS, ITAR, NIST, and Sarbanes-Oxley
Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.