Senior Analyst, Security GRC

Insight Global is seeking a Senior Analyst, Security GRC to join a leading payments processing organization. This role sits within the Information Security GRC team and is primarily responsible for supporting and expanding the organization’s PCI‑DSS compliance program, while also contributing to broader security governance, risk, and assurance initiatives.

The Senior Analyst will play a key role in coordinating PCI requirements, managing evidence collection, tracking remediation activities, and supporting parallel audits and assessments. This includes working closely with business and technology stakeholders to validate that controls are designed and operating effectively, reducing the risk of repeat findings, control failures, or regulatory exposure.

The role will support security risk management activities, including risk assessments, exception handling, and maintaining risk documentation. The successful candidate will be expected to assess security risks, evaluate mitigating and compensating controls, and communicate risk clearly to both technical and non‑technical audiences.

In addition, this position contributes to security governance efforts, including supporting policies, standards, and frameworks aligned to industry best practices such as PCI‑DSS, NIST, and ISO. The Senior Analyst will assist with compliance monitoring, metrics, and reporting, translating technical findings into clear insights for senior leadership and governance forums.

We may use artificial intelligence tools to assist with the screening, assessment, or selection of potential applicants for this position.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

-5+ years of experience in Information Security, GRC, audit, or risk
-Strong hands‑on experience supporting PCI‑DSS compliance programs
-Ability to assess and articulate security risk and control effectiveness
-Strong communication skills with the ability to translate technical concepts into business terms
-Bachelor’s degree in Information Security, Computer Science, Risk Management, or related field

-Experience in the payments or financial services industry
-Background in consulting, advisory, or audit
-Experience with GRC tools (e.g., ServiceNow GRC, Archer, MetricStream)
-Exposure to third‑party risk management and vendor assessments
-Experience preparing executive or governance‑level reporting
-Familiarity with security metrics, KPIs, or dashboarding

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.