Cybersecurity GRC Analyst II

Job description

Overview Position: IT GRC Analyst II: Location: Santa Ana, California - On-site 4 days a week Compensation: 100-130K/yr DOE: *Actual compensation may vary from posting based on geographic location, work experience, education, and/or skill level. Position Summary: The Cybersecurity GRC Analyst II will be a key member of our fast-paced, growing Cybersecurity Services team. This role is intensely focused on Governance, Risk, and Compliance (GRC) and serves as a primary point of contact for responding to external audits. The Analyst will be responsible for day-to-day IT compliance, data governance, and IT risk management functions. This role is critical in defining, creating, and managing IT policies and standards to meet legal and regulatory requirements. Responsibilities: - External Audit Management : Lead the coordination and response to all external IT audits and regulatory examinations. Act as the primary liaison for external auditors, managing evidence collection, interviews, and formal responses to findings. - Compliance & Controls Testing : Design, lead, and perform comprehensive IT control reviews and compliance testing aligned with regulatory and industry frameworks (e.g., SO...