InfoSec GRC Analyst (St. Louis)

About The Position

Requirements

• 2 – 4 years of experience in Information Security/Cybersecurity, Information Technology, Computer Science, or Information Systems.
• General understanding of audit and compliance methodologies, and familiarity with industry-accepted standards and frameworks.
• Skilled in communicating audit plans, timelines, and progress updates to stakeholders in a clear and timely manner.
• Experience designing and delivering training related to controls, standards, and regulations for audit teams.
• Competence in tracking and recording risks, issues, decisions, dependencies, and action items for audit and compliance initiatives.
• Ability to provide status and tracking updates on compliance efforts through meetings and reporting tools.
• Strong collaboration skills, with the ability to build relationships with Finance, Risk, Compliance, Legal, and other departments.
• Possess general knowledge of laws and regulations pertinent to information security and the organization.
• Demonstrate familiarity with information security best practices and recognized frameworks.
• Excellent verbal and written communication skills. Able to communicate persuasively and influence others.
• Ability to work independently and collaboratively in a fast-paced environment.
• Demonstrate professional skepticism to ensure evidence is sufficient when assessing the relevant information security controls.
• Bachelors degree in Information Security/Cybersecurity, Information Technology, Computer Science, or Information Systems.

Nice To Haves

• Desired Certifications: CISA, CISM, Security+

Responsibilities

• Leverage artificial intelligence (AI) powered tools to automate compliance monitoring, risk analysis, and evidence collection processes, enhancing efficiency and accuracy within InfoSec GRC operations.
• Support the monitoring and analysis of emerging regulations and standards.
• Offer guidance on the implementation of new regulatory requirements and standards, as well as recommendations for remediating identified issues.
• Contribute to the development, implementation, and ongoing maintenance of control frameworks across WWT.
• Perform regular reviews and evidence collection in relation to WWT compliance controls.
• Aid in the creation and upkeep of WWT’s control mappings to identify overlaps or gaps.
• Assist with the preparation and maintenance of documentation required for InfoSec GRC audit and compliance activities.
• Coordinate on-site audit logistics, including room reservations, resource scheduling, and catering arrangements.
• Administer audit vendor requirements and manage document repositories through vendor portals and scheduled meetings.
• Assist with the formulation and communication of audit plans, timelines, and progress updates to relevant stakeholders.
• Support the design and delivery of training sessions related to controls, standards, and regulations for audit personnel.
• Record and track risks, issues, decisions, dependencies, and action items associated with audit and compliance initiatives.
• Provide status and tracking updates on compliance efforts via status meetings, request logs, and other appropriate channels.
• Foster and sustain collaborative relationships with departments, such as Finance, Risk, Compliance, and Legal.

Benefits

• Health, Dental, and Vision Care
• Onsite Health Centers
• Employee Assistance Program
• Wellness program
• Competitive pay
• Profit Sharing
• 401k Plan with Company Matching
• Life and DIsability Insurance
• Tuition Reimbursement
• PTO and Sick Leave (starting at 20 days per year)
• Holidays (10 per year)
• Parental Leave
• Military Leave
• Bereavement
• Nursing Mothers Benefits
• Voluntary Legal
• Pet Insurance
• Employee Discount Program