Job Description
Job Title: IT Governance, Risk, and Compliance (GRC) Analyst Sr.
Position Location: Raleigh, NC. Hybrid Position, must live locally.
Your impact:
As Coastal's IT GRC Analyst Sr., you will coordinate Coastal's information security and IT governance activities, facilitate IT risk assessments and audits, partner with business units to assess third party risk and make recommendations, and assess compliance with internal security standards
As a key contributor to the Coastal team, your responsibilities will be:
- 30%) Develop and improve administrative security control processes. Collaborate with stakeholders on process improvement efforts to facilitate efficient compliance with security requirements. Identify systemic and procedural risks and compliance challenges and propose and track appropriate remediation activities. .
- 30%) Implement and manage Information Security enterprise risk and control registers and provide visibility and reporting to executive management. Design and revise risk assessments based on regulatory compliance requirements, industry best practice frameworks, and ongoing changes in technology and business needs. Stay up to date on regulatory and compliance requirements (e.g. NCUA, FFIEC, GLBA, PCI-DSS, HIPAA).
- 15%) Collaborate with Information Security leadership to advance program based on risk and compliance assessments and targets. Recommend appropriate security control selection.
- 25%) Maintain written Information Security program, recommending changes for approval to Information Security leadership. Create or revise security standards, procedures, and guidelines as needed based on adoption of new technologies and identification of risks and compliance requirements.
Interested? Here are the qualifications we need to see on your resume:
Required experience:
Six years of information security experience including:
Three years' experience completing compliance and risk assessments, identifying cybersecurity risks, assessing control effectiveness, and proposing mitigation approaches.
Three years of experience designing and implementing IT governance procedures, including compliance assessment, metrics, and reporting.
Two years of experience assessing third party security risk.
Two years of experience designing cybersecurity risk assessment and drafting proposed security policy and/or standards.
Preferred experience:
Experience in a technical role within cybersecurity or IT engineering or administration is highly desirable
Experience with the technological aspects of a depository institution
Experience using a Governance Risk and Compliance (GRC) tool to conduct assessments
Experience coordinating IT change management function
Education:
Related bachelor's degree; computer science or information systems preferred. Three additional years of relevant experience may be considered in lieu of degree.
Security certifications such as CISSP, CRISC, CGEIT, CGRC, CISM, CISA, GRCP also preferred.
Essential cognitive/physical/social requirements of position:
Must be able to learn and retain information; remain in a stationary position; constantly operate a computer; and converse with others on a continual basis.
For consideration visit . You can also scroll back up to the top of this page to the "Apply Now" section.
Deadline for Application: All resumes must be received on or before 4/11/2025
Applicants must be authorized to work for any employer in the U.S. We are unable to sponsor or take over sponsorship of an employment Visa at this time.
Coastal Federal Credit Union is committed to providing reasonable accommodations to applicants who may have disabilities. If you need special assistance or an accommodation in applying for employment, please contact our HR department at jkedra@coastal24.com. Request for reasonable accommodation will be considered on a case by case basis.
"It's our duty to create a workplace and company culture where everyone feels heard and valued, and is appreciated for their unique backgrounds, experiences, and perspectives. At the end of the day, what truly matters is that every person who walks through our doors believes that they are an integral part of our team and can bring their best, true self to work each day. Building a culture of inclusivity means creating an environment where everyone thrives and succeeds together."
-Tyler Grodi, CEO
VEVRAA Federal Contractor
Equal Opportunity/Affirmative Action Employer
Minority/Female/Disability/Veterans Coastal Credit Union
Job Tags
For contractors, Work visa,