13989 - Sr. GRC Analyst

Together we change lives.

Kelly is a team of experts driven by our belief that the impact of the right person in the right job is limitless.

No matter where you are in your career journey you can apply your knowledge and passion to move people, organizations, and communities forward.  You’ll have opportunities to grow your expertise and capabilities, both professionally and personally.  As a team we celebrate inclusion, caring and collaboration.  As a company we value your contribution, we work with integrity, and we always put people first – so your impact really will change lives.

As a Senior GRC Analyst based in our dynamic office, you’ll champion the development, implementation, and continuous improvement of our cybersecurity Governance, Risk, and Compliance (GRC) program. With your in-depth expertise in industry-leading frameworks and regulations, you’ll ensure our organization not only meets, but exceeds, information security standards. Bring your advanced risk management acumen and passion for security excellence to a forward-thinking team making a real impact.

Core Roles and Responsibilities

• Lead and execute risk assessments, including identification, analysis, and evaluation of cybersecurity risks across business processes and technologies.
• Monitor, evaluate, and report on compliance with relevant industry standards (e.g., ISO 27001, NIST, SOC2, GDPR, HIPAA).
• Develop, implement, and maintain company-wide GRC policies, procedures, and guidelines.
• Facilitate cross-functional compliance initiatives and awareness programs to embed a culture of security.
• Advise business stakeholders on practical risk mitigation and control strategies.
• Track, manage, and drive remediation of risk and compliance issues to closure.
• Conduct ongoing gap analyses and readiness assessments; contribute to internal and external audit activities.
• Stay ahead of emerging threats, regulatory changes, and industry trends in cybersecurity and risk management.
• Mentor and guide junior analysts and other team members, fostering departmental knowledge-sharing.

Key Competencies & Observable Behaviors

• Expert Knowledge of Regulatory Frameworks: Demonstrates mastery of frameworks like ISO 27001, NIST, SOC2, and other global cybersecurity standards.
• Analytical Thinking: Delivers thorough risk analyses with actionable insights, providing well-documented risk reports.
• Collaboration: Works proactively with cross-functional stakeholders, facilitating clear communication across technical and non-technical audiences.
• Initiative: Independently identifies security gaps and process improvements, initiating innovative solutions.
• Attention to Detail: Ensures accuracy in documentation, policy development, and audit support.
• Problem Solving: Responds swiftly to compliance and risk challenges, balancing security needs with business operations.
• Influence & Leadership: Guides teams through complex GRC initiatives and change-management processes.

Measurable Outcomes

• Completion of regular risk assessment reports with actionable recommendations.
• Up-to-date, audit-ready documentation for all key compliance areas.
• Demonstrable reduction in open risk or compliance issues over time.
• Training completion rates and improved security awareness metrics among staff.
• Successful completion of internal and external audits with minimal findings.

Qualifications & Skills

• Bachelor’s degree in Cybersecurity, Information Technology, or related field.
• 5+ years’ experience in GRC, cybersecurity, or risk management.
• Professional certifications such as CISSP, CISM, CRISC, or CISA strongly preferred.
• Proven expertise in interpreting and applying risk and compliance frameworks.
• Strong communication, organizational, and analytical skills.
• Experience with GRC tools, risk management platforms, and incident response.

Base pay range for this position is $73,875 – 98,500 per year.  Final annual compensation will be based on experience and may vary by geographic location.

Total compensation package including benefits as applicable to the position – understanding that each person has unique professional and personal needs focused on your total well-being.  Explore our range of benefits at: Kelly Services | People Regular Staff

Kelly is an equal opportunity employer committed to employing a diverse, equitable and inclusive workforce, including, but not limited to, race, gender, individuals with disabilities, protected veterans, sexual orientation, and gender identity. Equal Employment Opportunity is The Law.