Experienced or Senior GRC Analyst

Hotman Group, LLC•Fort Worth, TX

5d•Remote

About The Position

You’re a high-performing cybersecurity GRC professional. You want to do meaningful work that makes a real impact. You’re ready to ditch rigid corporate structures and join a team that values excellence, growth, and collaboration. Welcome to Hotman Group — where we’re rethinking what a cybersecurity and compliance firm can be. We’re growing fast, solving complex problems for Fortune 1000 companies and high-growth startups alike — and we’re looking for an exceptional Experienced or Senior GRC Analyst to join us. This is a full-time, remote, contract-to-hire role, with top performers moving into permanent positions within 6 months. As an Experienced GRC Analyst, you'll be the trusted advisor our clients count on — helping them build stronger, safer businesses through world-class cybersecurity and GRC strategies. You won’t be stuck doing the same thing every day — you'll work on diverse, challenging projects across multiple industries, helping world-class organizations tackle their most critical security and compliance needs. At Hotman Group, we’re not just another consulting firm. At Hotman Group, we're redefining what it means to be a trusted partner in cybersecurity and GRC (Governance, Risk, and Compliance). We're a rapidly growing boutique firm dedicated to helping business leaders earn and keep the trust of their customers — all through expert guidance, flawless execution, and a deep commitment to quality. Our clients range from Fortune 1000 companies to fast-growing startups — and they all have one thing in common: they rely on us to deliver results that matter. Thanks to our comprehensive services, high retention rates, and client satisfaction, we’ve built a reputation as a team that gets it done, and gets it done right. At Hotman Group, we believe work should be more than just a job — it should be a place where you can grow, thrive, and have a great time doing it. We’ve intentionally left behind the rigid corporate culture to build something better: a collaborative, energizing environment where every voice matters and every team member is empowered to bring their full self to work. Here, you’ll tackle complex, meaningful problems, create real impact for our clients, and have a lot of fun along the way. If you’re passionate about excellence, excited by challenges, and ready to be part of a team that values both hard work and genuine connection, you’ll fit right in.

Requirements

5+ years of hands-on experience in GRC, cybersecurity, IT audit, risk management, or a related field
Deep expertise in cybersecurity fundamentals and IT control frameworks
Strong working knowledge of compliance standards (e.g., SOC 2, ISO 27001, NIST CSF, HIPAA, HITRUST)
A track record of delivering high-quality client service, managing projects, and driving results
Excellent writing skills — you can translate complexity into clear, polished deliverables
Outstanding critical thinking, problem-solving, and organizational skills
A high level of accountability, ownership, and professional maturity
Curiosity, creativity, and a proactive, solutions-first mindset
Comfort working independently in a fast-paced, remote environment
Authorized to work in the U.S.
Able to pass a background check
Reliable high-speed internet and a secure remote work setup

Nice To Haves

Bonus Points if you have industry certifications such as CISA, CISM, CISSP, CRISC, or are actively pursuing one.

Responsibilities

Lead assessments and audits of security and IT control environments
Design, implement, and mature cybersecurity and compliance programs
Develop risk registers, conduct risk assessments, and track remediation efforts
Create and refine policies, standards, and procedures that align with top frameworks (SOC 2, ISO 27001, NIST CSF, HIPAA, HITRUST, and more)
Guide third-party vendor risk management programs
Prepare clients for internal audits and external assessments
Translate technical, regulatory, and business requirements into clear, actionable solutions
Mentor junior analysts and contribute to the growth of our GRC practice

Benefits

Collaborative, not corporate: You’ll be part of a close-knit, supportive team where ideas are heard and results are celebrated.
Growth-focused: We invest in your development because your success is our success.
Client-obsessed: We go above and beyond to create amazing outcomes — and our clients notice.
Energized and authentic: We believe doing great work should be exciting, meaningful, and even fun.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume