Summary Statement The Senior IT Security Risk Analyst is responsible for leading the organization ... Experience in Logicgate or another GRC tool. * Experience using AI driven tools to enhance ...
Summary Statement The Senior IT Security Risk Analyst is responsible for leading the organization ... Experience in Logicgate or another GRC tool. * Experience using AI driven tools to enhance ...
Summary Statement The Senior IT Security Risk Analyst is responsible for leading the organization ... Experience in Logicgate or another GRC tool. * Experience using AI driven tools to enhance ...
Summary Statement The Senior IT Security Risk Analyst is responsible for leading the organization ... Experience in Logicgate or another GRC tool. * Experience using AI driven tools to enhance ...
Summary Statement The Senior IT Security Risk Analyst is responsible for leading the organization ... Experience in Logicgate or another GRC tool. * Experience using AI driven tools to enhance ...
Summary Statement The Senior IT Security Risk Analyst is responsible for leading the organization ... Experience in Logicgate or another GRC tool. * Experience using AI driven tools to enhance ...
Hiring 13+ Years Experienced Professionals for Senior SAP Security & GRC Engineer (S/4HANA & Fiori)
Dearborn, MI ยท On-site
Maintain GRC master data and perform risk analysis, audit support, and compliance activities. Build and maintain MSMP workflows and configure GRC notifications. Create custom functions, risks, and ...
Hiring 13+ Years Experienced Professionals for Senior SAP Security & GRC Engineer (S/4HANA & Fiori)
Dearborn, MI ยท On-site
Maintain GRC master data and perform risk analysis, audit support, and compliance activities. Build and maintain MSMP workflows and configure GRC notifications. Create custom functions, risks, and ...
Maintain GRC master data and perform risk analysis, audit support, and compliance activities. * Build and maintain MSMP workflows and configure GRC notifications. * Create custom functions, risks ...
Maintain GRC master data and perform risk analysis, audit support, and compliance activities. * Build and maintain MSMP workflows and configure GRC notifications. * Create custom functions, risks ...
Maintain GRC master data and perform risk analysis, audit support, and compliance activities. Build and maintain MSMP workflows and configure GRC notifications. Create custom functions, risks, and ...
Maintain GRC master data and perform risk analysis, audit support, and compliance activities. Build and maintain MSMP workflows and configure GRC notifications. Create custom functions, risks, and ...
Maintain GRC master data and perform risk analysis, audit support, and compliance activities. * Build and maintain MSMP workflows and configure GRC notifications. * Create custom functions, risks ...
Maintain GRC master data and perform risk analysis, audit support, and compliance activities. * Build and maintain MSMP workflows and configure GRC notifications. * Create custom functions, risks ...
SAP GRC Security Consultant
Dearborn, MI ยท On-site
... running risk analysis, audit and compliance support activities Build and maintain MSMP Workflows and configuration of GRC notifications. Build ruleset, creating custom functions and risks and ...
SAP GRC Security Consultant
Dearborn, MI ยท On-site
... running risk analysis, audit and compliance support activities Build and maintain MSMP Workflows and configuration of GRC notifications. Build ruleset, creating custom functions and risks and ...
Strong analytical and problem-solving skills, with demonstrated ability to evaluate diverse ... Experience with, or willingness to learn, governance, risk, and compliance (GRC) platforms (e.g ...
Strong analytical and problem-solving skills, with demonstrated ability to evaluate diverse ... Experience with, or willingness to learn, governance, risk, and compliance (GRC) platforms (e.g ...
Strong analytical and problem-solving skills, with demonstrated ability to evaluate diverse ... Experience with, or willingness to learn, governance, risk, and compliance (GRC) platforms (e.g ...
Strong analytical and problem-solving skills, with demonstrated ability to evaluate diverse ... Experience with, or willingness to learn, governance, risk, and compliance (GRC) platforms (e.g ...
The Cybersecurity Risk Coordinator reports to the Manager of Cybersecurity Risk Services. This ... Can conform to shifting priorities, demands and timelines through analytical and problem-solving ...
The Cybersecurity Risk Coordinator reports to the Manager of Cybersecurity Risk Services. This ... Can conform to shifting priorities, demands and timelines through analytical and problem-solving ...
GRC Administrator & Developer
Lansing, MI ยท On-site
The role focuses on maintaining and enhancing the State of Michigan's Web-based Governance, Risk ... Analyze GRC issues/incidents to identify root causes and work with vendor support to implement ...
Quick apply
GRC Administrator & Developer
Lansing, MI ยท On-site
The role focuses on maintaining and enhancing the State of Michigan's Web-based Governance, Risk ... Analyze GRC issues/incidents to identify root causes and work with vendor support to implement ...
Cyber - SAP Security and GRC Access & Process Control Consultant / Security Engineer II
Detroit, MI ยท On-site
Analyze segregation of duties risks, support ruleset updates, and perform user- and role-level risk assessments in SAP GRC 12.0. * Develop security solutions for custom transactions, tables, programs ...
Cyber - SAP Security and GRC Access & Process Control Consultant / Security Engineer II
Detroit, MI ยท On-site
Analyze segregation of duties risks, support ruleset updates, and perform user- and role-level risk assessments in SAP GRC 12.0. * Develop security solutions for custom transactions, tables, programs ...
GRC Administrator & Developer
Lansing, MI ยท On-site
The role focuses on maintaining and enhancing the State of Michigan's Web-based Governance, Risk ... Analyze GRC issues/incidents to identify root causes and work with vendor support to implement ...
New
GRC Administrator & Developer
Lansing, MI ยท On-site
The role focuses on maintaining and enhancing the State of Michigan's Web-based Governance, Risk ... Analyze GRC issues/incidents to identify root causes and work with vendor support to implement ...
New
IT GRC Program Administrator II
Pontiac, MI ยท On-site
... e, risk management, cybersecurity policy analysis, and audit-related work. * Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure ...
IT GRC Program Administrator II
Pontiac, MI ยท On-site
... e, risk management, cybersecurity policy analysis, and audit-related work. * Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure ...
IT GRC Program Administrator II
Pontiac, MI ยท On-site
... e, risk management, cybersecurity policy analysis, and audit-related work. * Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure ...
IT GRC Program Administrator II
Pontiac, MI ยท On-site
... e, risk management, cybersecurity policy analysis, and audit-related work. * Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure ...
IT GRC Program Administrator II
Pontiac, MI ยท On-site
... e, risk management, cybersecurity policy analysis, and audit-related work. * Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure ...
IT GRC Program Administrator II
Pontiac, MI ยท On-site
... e, risk management, cybersecurity policy analysis, and audit-related work. * Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure ...
... e, risk management, cybersecurity policy analysis, and audit-related work. * Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure ...
... e, risk management, cybersecurity policy analysis, and audit-related work. * Proficiency in managing system development processes, end-user computing controls, cloud systems, infrastructure ...
SAP HANA Fiori
$50 - $54/hr
Maintain GRC master data, running risk analysis, audit and compliance support activities * Build and maintain MSMP Workflows and configuration of GRC notifications. * Build ruleset, creating custom ...
Quick apply
SAP HANA Fiori
$50 - $54/hr
Maintain GRC master data, running risk analysis, audit and compliance support activities * Build and maintain MSMP Workflows and configuration of GRC notifications. * Build ruleset, creating custom ...
Senior Technical Risk Engineer
Dearborn, MI ยท Remote
$96K - $162K/yr
Data & Analytics: GCP BigQuery, Power BI (or similar) to visualize risk posture & evidence ... GRC Platforms: Archer, ServiceNow * ITIL-based IT Service Management (ITSM) * Familiarity with ...
Senior Technical Risk Engineer
Dearborn, MI ยท Remote
$96K - $162K/yr
Data & Analytics: GCP BigQuery, Power BI (or similar) to visualize risk posture & evidence ... GRC Platforms: Archer, ServiceNow * ITIL-based IT Service Management (ITSM) * Familiarity with ...
Grc Risk Analyst information
What is the difference between Grc Risk Analyst vs Compliance Analyst?
| Aspect | Grc Risk Analyst | Compliance Analyst |
|---|---|---|
| Certifications | ISO 31000, FRM, CRISC | ISO 19600, CCEP, CISA |
| Work Environment | Risk management teams, corporate offices | Regulatory departments, corporate offices |
| Industry Usage | Finance, banking, insurance, corporate risk | Financial services, healthcare, manufacturing |
| Job Focus | Identifying, assessing, and mitigating risks across enterprise | Ensuring compliance with laws and regulations |
While both roles involve regulatory and risk considerations, a Grc Risk Analyst focuses on enterprise-wide risk management strategies, whereas a Compliance Analyst concentrates on adherence to specific laws and regulations. Both roles require similar certifications and often work in overlapping industries, but their core responsibilities differ in scope and focus.
What are GRC Risk Analysts?
What are the key skills and qualifications needed to thrive as a GRC Risk Analyst, and why are they important?
What are some common challenges a GRC Risk Analyst might face when implementing new risk management frameworks within an organization?
- Weekend Vulnerability Analyst
- Remote Workday Security Analyst
- Weekend Remote Soc Analyst
- Information Technology Security Analyst
- Information Security
- Remote Vulnerability Analyst
- Senior Information Security Compliance Analyst
- Urgently Hiring Cloud Security Analyst
- Security Risk Analyst
- Junior Security Analyst
Full-time
Medical, Retirement, PTO
Re-posted 3 days ago
Job description
Amerisure is currently recruiting for a Senior IT Security Risk Analyst that can do a 3-day hybrid approach onsite in our Farmington Hills office. The ideal candidate will also possess the following skill set.
Summary Statement
The Senior IT Security Risk Analyst is responsible for leading the organization's cybersecurity governance, risk, and compliance initiatives. This role drives the design, implementation, and continuous improvement of the IT risk program, ensuring alignment with regulatory requirements (e.g., New York State Department of Financial Services, NIST CSF) and business objectives.
Essential Tasks/Major Duties
- Perform security risk assessments of third-party vendors including AI and mobile application reviews.
- Lead the review, update, and communication of cybersecurity policies, standards, and procedures to ensure alignment with global frameworks (e.g., NIST CSF, NYDFS, NIS2, PCI DSS).
- Lead and maintain the IT Risk Register including metrics which provides leadership an overall view of IT risk.
- Perform risk assessments of IT risks.
- Map regulations to policies and controls.
- Create risk and compliance metrics for management and compliance purposes.
- Perform control testing and validation to ensure proper control effectiveness.
- Support IT audits and controls around Model Audit Rule (MAR).
- Monitor threat intelligence to determine potential impact to environment and remediation urgency.
- Support vulnerability management program, daily security operations and identity tasks as needed.
- Be a key advisor to leadership, translating cybersecurity risk into business impact and enabling informed decision-making.
Knowledge, Skills & Abilities
- Bachelor's degree or equivalent combination of education and experience.
- 5 years cybersecurity experience.
- Advanced Cyber Risk Management domain specific professional certification required: Certified Information Systems Security Professional (CISSP); Certified Information Security Manager (CISM); Certified in Risk and Information Systems Control (CRISC); Certified Cloud Security Professional (CCSP); AWS Certified Security.
- 2 years experience performing IT security control testing.
- Experience reviewing SOC 2 Type 1 and Type 2 reports to articulate potential security risk.
- Expertise in conducting third-party cyber risk assessments.
- Proficient in NIST security domain frameworks and architectures.
- Experience in Logicgate or another GRC tool.
- Experience using AI driven tools to enhance automation and operational efficiency.
- Ability to quickly diagnose security control problems and propose/implement solutions.
- Clear and concise articulation of risk to both technical peers and non-technical stakeholders.
- Partner with IT teams, developers, and business leaders to support security initiatives, and mentor and develop members of the security team.
- Analyze data and security trends to anticipate and assess potential threats.
- Stay current with regulations, evolving threats, technologies, and security protocols.
#LI-BR1
Just as we are committed to creating exceptional value for our Partners For Successยฎ agencies and policyholders, Amerisure also remains committed to being an employer of choice. We reinforce this commitment by adhering to an Employee Value Proposition that, in part, is provided through a competitive total rewards package. This package includes competitive base pay, performance-based incentive pay, comprehensive health and welfare benefits, a 401(k) savings plan with profit sharing, and generous paid time off programs. We also offer flexible work arrangements to promote work-life balance. Recognized as one of the Best and Brightestยฎ Companies to Work For in the Nation and one of Business Insurance magazine's Best Places to Work in Insurance, we provide a workplace that fosters excellence and professional growth. If you are looking for a collaborative and rewarding career, Amerisure is looking for you.
Amerisure Mutual Insurance Company is an Equal Employment Opportunity employer. Amerisure provides equal employment opportunities to all employees and applicants without regard to race, color, religion, sex (to include sexual orientation and gender identity), national origin, age, disability, genetic information, veteran status, or any other protected characteristic under applicable federal, state, or local laws. Amerisure complies with all applicable laws governing nondiscrimination in employment in all locations where the company operates. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, and training. Amerisure prohibits harassment or discrimination of any kind and is committed to maintaining a workplace free from unlawful harassment or discrimination. Amerisure prohibits retaliation against anyone who reports discrimination, participates in an investigation, or opposes unlawful practices. Any improper interference with an employee's ability to perform their job duties may result in disciplinary action, up to and including termination.
About Amerisure
Sourced by ZipRecruiter
Industry
Insurance services
Company size
501 - 1,000 Employees
Headquarters location
Farmington, MI, US
Year founded
1912