Senior GRC Analyst

As a Senior GRC Analyst, you will lead the design and execution of enterprise-wide compliance assessment methodologies across multiple regulatory domains, with a strong focus on PCI DSS. You will own the maturation of compliance programs by defining policies, procedures, operational standards, and integrated control frameworks that align regulatory requirements with business objectives. In this role, you will serve as a primary point of contact for regulators, auditors, and senior compliance stakeholders, lead technical scoping and de-scoping discussions across hybrid on‑premises and cloud environments, and manage third-party compliance assessments. You will partner closely with Legal, IT, Finance, and business teams to embed compliance into the technology ecosystem, lead senior stakeholder workshops on complex regulatory topics, define KPIs and KRIs, and contribute to the strategic roadmap for the Compliance Assessment Team by building scalable, reusable solutions that drive operational excellence.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

• 6–8 years of regulatory compliance experience, including hands-on ownership of PCI DSS programs in hybrid on‑premises and cloud environments
• Proven ability to design and implement enterprise‑level compliance assessment methodologies across multiple regulatory domains
• Direct experience building and operating Common Control Frameworks (CCFs) and integrated control environments
• Strong technical background, including testing technical controls and translating complex architectures into clear compliance requirements
• Demonstrated success leading cross‑functional teams and senior stakeholder workshops on complex regulatory topics
• Experience managing external regulators, auditors, and third‑party compliance assessments
• Ability to align compliance programs with business objectives through medium‑term planning and measurable outcomes (KPIs/KRIs)
• Bachelor’s degree in IT, Cybersecurity, Computer Science, or equivalent practical experience
Excellent written and verbal communication skills with the ability to operate independently and drive results in ambiguous environments

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.