Governance, Risk and Compliance Analyst

About The Position

Requirements

• Bachelor’s degree in Risk Management, Business, Information Security, or a related field.
• Minimum of 2 years of experience in governance, risk management, compliance, or audit preferably in the banking or financial services industry.
• Demonstrated understanding of financial industry regulations and their impact on governance and compliance.
• Experience with managing information security requirements, banking regulations, industry standards, and cybersecurity frameworks (e.g., NIST 800-53/171/CSF, SOX, OCC, FFIEC, GLBA, ISO 27001 and PCI-DSS).
• Hands-on experience with risk assessments, control testing, or GRC platforms (e.g., Archer, LogicGate, ServiceNow GRC).
• Strong ability to analyze data, identify risks, and recommend actionable solutions.
• Ability to manage and review documentation for accuracy and compliance.
• Comfortable working with Microsoft Office, systems, risk platforms, and spreadsheets to track and analyze compliance data.
• Capable of handling multiple priorities and deadlines in a fast-paced environment.
• Proven ability to identify and drive opportunities for continuous improvement.
• Strong verbal and written communication skills with the ability to present complex risk topics clearly and concisely.
• Comfortable communicating with all levels of the organization, including executive leadership, regulators, and auditors.
• Able to write clear reports, summaries, and documentation for internal and external stakeholders.
• Skilled in delivering risk and compliance training or awareness materials when needed.
• Ability to handle sensitive and confidential information with professionalism and discretion.

Nice To Haves

• Certifications in any of the following is preferred: Security+, CRISC, CISA, CISSP, or relevant GRC or compliance credentials.

Responsibilities

• Monitor and maintain the GRC framework, ensuring alignment with regulatory standards (e.g., FFIEC, GLBA, SOX).
• Perform ongoing monitoring and testing of internal controls.
• Conduct risk assessments for business units, IT systems, and third-party vendors.
• Use logical reasoning to assess risk impact and recommend appropriate mitigation strategies.
• Proactively identifies potential risks, control weaknesses, and process inefficiencies.
• Collaborate with business units to address risks, improve controls, and support regulatory readiness.
• Support internal and external audits, ensuring timely and accurate delivery of evidence and remediation tracking.
• Collaborate with stakeholders to resolve findings and implement control improvements.
• Maintain risk registers, control matrices, and documentation related to compliance efforts.
• Independently investigates compliance issues and proposes corrective actions.
• Assist with regulatory filings and compliance reporting requirements.
• Assist in policy development and review to support enterprise risk management and governance objectives.
• Track and report on risk metrics, incidents, control gaps, and compliance issues.
• Support the implementation and maintenance of GRC tools or platforms.
• Other job-related projects as assigned.

Benefits

• WSFS provides a competitive benefits package, which includes medical, dental, and vision coverage; a 401(k) plan; life, accident, and disability insurance; flexible spending accounts (FSAs) and health savings accounts (HSAs); and wellness programs.
• Additional benefits may include paid parental leave, military leave, vacation and other paid time off, sick leave in accordance with applicable state laws, and paid holidays.