Governance, Risk, and Compliance (GRC) Analyst - Onsite
Genesis10, Austin, TX, United States
Genesis10 is currently seeking a Governance, Risk, and Compliance (GRC) Analyst for an onsite position with a Public Sector Organization located in Austin, TX. This is a 12+ month contract opportunity.
This role is responsible for advancing and operationalizing the organization's governance, risk, and compliance program across cybersecurity, regulatory, and enterprise risk domains. The position will focus on high-priority initiatives including regulatory audits, NIST CSF alignment, Microsoft Purview data governance capabilities, vendor risk management, and GRC tooling implementation to reduce regulatory exposure and strengthen audit readiness.
Responsibilities:
Design and deploy enterprise information retention policies using Microsoft Purview
Develop labeling and classification taxonomies, exception handling processes, and end‑user guidance
Configure and support Microsoft Purview Insider Risk Management capabilities, including alert tuning, workflows, and misuse detection scenarios
Support and mature the enterprise GRC program, ensuring alignment with internal governance requirements and external regulatory obligations
Develop, maintain, and document security and compliance controls, policies, standards, and supporting procedures
Lead or support the evaluation and selection of a formal GRC technology platform
Perform current state assessments of the security program against the NIST Cybersecurity Framework (CSF)
Develop target state profiles, gap analyses, and prioritized remediation roadmaps
Maintain and enhance the third‑party vendor risk management program
Support business continuity and disaster recovery planning by assisting with risk analysis and documentation
Coordinate and support multiple regulatory and internal audits
Prepare audit evidence, manage control documentation, track findings, and support remediation activities
Requirements:
Bachelor's degree in Information Security, Information Systems, Risk Management, or a related field (relevant experience may be considered in lieu of formal education)
3-7 years of experience in Governance, Risk, and Compliance (GRC), Information Security/Cybersecurity Program Support, or IT Audit/Risk Management/Regulatory Compliance
Experience with Microsoft 365 security and compliance tooling, particularly Microsoft Purview, is required
Strong working knowledge of Governance, Risk, and Compliance principles within an information security context
Hands‑on experience supporting regulatory audits and compliance assessments
Familiarity with the NIST Cybersecurity Framework and risk‑based security program design
Understanding of third‑party risk management concepts, vendor assessments, and risk reporting
Ability to manage multiple initiatives concurrently while maintaining attention to detail
Strong written and verbal communication skills, with the ability to translate technical concepts for non‑technical audiences
Proven ability to work independently while collaborating effectively across technical and business teams
Desired skills:
Prior experience supporting financial services, public sector, or regulated environments is preferred
Experience working in a contract or project‑based delivery role is a plus
CISA, CRISC, CISSP, CISM, or similar GRC/security certifications
Microsoft security or compliance certifications related to M365/Purview
Pay range: $50.00 - $75.00
Only candidates available and ready to work directly as Genesis10 employees will be considered for this position.
For contract roles, Genesis10 offers the benefits listed below. If this is a perm‑placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:
Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
The opportunity to have a career‑home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
Behavioral Health Platform
Medical, Dental, Vision
Health Savings Account
Voluntary Hospital Indemnity (Critical Illness & Accident)
Voluntary Term Life Insurance
401K
Sick Pay (for applicable states/municipalities)
Commuter Benefits (Dallas, NYC, SF, and Illinois)
Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#J-18808-Ljbffr
This role is responsible for advancing and operationalizing the organization's governance, risk, and compliance program across cybersecurity, regulatory, and enterprise risk domains. The position will focus on high-priority initiatives including regulatory audits, NIST CSF alignment, Microsoft Purview data governance capabilities, vendor risk management, and GRC tooling implementation to reduce regulatory exposure and strengthen audit readiness.
Responsibilities:
Design and deploy enterprise information retention policies using Microsoft Purview
Develop labeling and classification taxonomies, exception handling processes, and end‑user guidance
Configure and support Microsoft Purview Insider Risk Management capabilities, including alert tuning, workflows, and misuse detection scenarios
Support and mature the enterprise GRC program, ensuring alignment with internal governance requirements and external regulatory obligations
Develop, maintain, and document security and compliance controls, policies, standards, and supporting procedures
Lead or support the evaluation and selection of a formal GRC technology platform
Perform current state assessments of the security program against the NIST Cybersecurity Framework (CSF)
Develop target state profiles, gap analyses, and prioritized remediation roadmaps
Maintain and enhance the third‑party vendor risk management program
Support business continuity and disaster recovery planning by assisting with risk analysis and documentation
Coordinate and support multiple regulatory and internal audits
Prepare audit evidence, manage control documentation, track findings, and support remediation activities
Requirements:
Bachelor's degree in Information Security, Information Systems, Risk Management, or a related field (relevant experience may be considered in lieu of formal education)
3-7 years of experience in Governance, Risk, and Compliance (GRC), Information Security/Cybersecurity Program Support, or IT Audit/Risk Management/Regulatory Compliance
Experience with Microsoft 365 security and compliance tooling, particularly Microsoft Purview, is required
Strong working knowledge of Governance, Risk, and Compliance principles within an information security context
Hands‑on experience supporting regulatory audits and compliance assessments
Familiarity with the NIST Cybersecurity Framework and risk‑based security program design
Understanding of third‑party risk management concepts, vendor assessments, and risk reporting
Ability to manage multiple initiatives concurrently while maintaining attention to detail
Strong written and verbal communication skills, with the ability to translate technical concepts for non‑technical audiences
Proven ability to work independently while collaborating effectively across technical and business teams
Desired skills:
Prior experience supporting financial services, public sector, or regulated environments is preferred
Experience working in a contract or project‑based delivery role is a plus
CISA, CRISC, CISSP, CISM, or similar GRC/security certifications
Microsoft security or compliance certifications related to M365/Purview
Pay range: $50.00 - $75.00
Only candidates available and ready to work directly as Genesis10 employees will be considered for this position.
For contract roles, Genesis10 offers the benefits listed below. If this is a perm‑placement opportunity, our recruiter can talk you through the unique benefits offered for that particular client. Benefits of Working with Genesis10:
Access to hundreds of clients, most who have been working with Genesis10 for 5-20+ years.
The opportunity to have a career‑home in Genesis10; many of our consultants have been working exclusively with Genesis10 for years.
Access to an experienced, caring recruiting team (more than 7 years of experience, on average.)
Behavioral Health Platform
Medical, Dental, Vision
Health Savings Account
Voluntary Hospital Indemnity (Critical Illness & Accident)
Voluntary Term Life Insurance
401K
Sick Pay (for applicable states/municipalities)
Commuter Benefits (Dallas, NYC, SF, and Illinois)
Genesis10 is an Equal Opportunity Employer. Candidates will receive consideration without regard to their race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
#J-18808-Ljbffr