Information Security Analyst (GRC / Risk & Vulnerability Management)

Work from home Full-time role Hiring

Position Summary We are seeking an experienced Information Security Analyst to support cybersecurity risk management, vulnerability management, and Governance, Risk, and Compliance (GRC) initiatives. This role requires a hands-on security professional who can assess risk, analyze vulnerabilities, drive remediation efforts, and collaborate with technical and business stakeholders to improve the organization's security posture.

Key Responsibilities

Perform cybersecurity risk assessments and support ongoing risk management activities.
Analyze and prioritize security vulnerabilities based on business impact and risk exposure.
Partner with engineering and security teams to drive remediation efforts.
Conduct security reviews and provide risk-based recommendations.
Support governance, risk, and compliance initiatives across the organization.
Monitor vulnerability trends, remediation progress, and security metrics.
Contribute to process improvements, automation initiatives, and security workflow optimization.
Communicate technical risks effectively to both technical and non-technical stakeholders.

Required Qualifications

5+ years of Information Security or Cybersecurity experience.
Strong experience in Governance, Risk & Compliance (GRC).
Hands-on experience with Risk Assessment and Risk Management.
Experience managing and analyzing security vulnerabilities.
Ability to articulate risk scenarios and business impact.
Strong understanding of security frameworks, controls, and methodologies.
Excellent communication and stakeholder management skills.
Experience working in a hands-on security analysis role.

Preferred Qualifications

AWS or cloud security experience.
Python scripting and security automation.
Experience with AI-driven workflow automation.
Application Security experience.
CI/CD Pipeline Security.
Infrastructure as Code (IaC) security.
CISSP or similar security certifications.

Ideal Candidate

Strategic thinker with strong technical depth.
Comfortable performing hands-on analysis and investigation.
Able to work independently with minimal supervision.
Experienced in driving remediation and influencing risk-based decisions across stakeholders.

Apply tot his job Apply To this Job

Apply

Information Security Analyst (GRC / Risk & Vulnerability Management)

Key Responsibilities

Required Qualifications

Preferred Qualifications

You might like

[Remote] AI Penetration Tester– 100% Remote

Cyber Security Engineer II

Application Security Engineer - Fully Remote - Must Work HST Hours

Corporate Security Engineer, IAC & Automation

Identity Security Engineer – ITDR, CSPM

Cybersecurity/Info Security Engineer (Remote- 130K)

Cyber Security Specialist (Governance, Risk & Compliance) - w2 only

Director, Cybersecurity

Security Analyst - AI Trainer

Remote Penetration Tester

Experienced Part-time Data Entry Specialist – Remote Work from Home Opportunity at arenaflex

Experienced Customer Service Representative – Supplemental Benefits Expert – Remote Opportunity

Sr. Regulatory Affairs SME - Medical Devices

Experienced Full Stack Data Entry Specialist – Remote Work Opportunity with arenaflex

Experienced Customer Service Representative – Deliver Exceptional Experiences at arenaflex

Experienced Mortgage Servicing Specialist III (Customer Service, Call Center) | Remote Work Opportunity

Experienced Customer Support Specialist - Remote Opportunity at arenaflex

Software Engineer, Platform - Bend, OR, USA

Accounts Receivable Specialist job at The Hatch Group in Plainview, MA

Care Coordinator, Behavioral Authorization Team – Evernorth Behavioral Health – Remote