Business Risk Analyst

Job Summary

A company is looking for a Business Risk Analyst to support information security compliance and risk management initiatives.

Key Responsibilities:

• Track compliance status and report progress via KPIs to management
• Prepare risk reports and dashboards for senior leadership and internal committees
• Assist with the execution of risk assessments and security control reviews across business units and IT environments

Qualifications:

• 4+ years of experience in information security, risk management, or compliance
• Working knowledge of SOC 2, PCI DSS, HIPAA, GovRAMP, NIST CSF or similar frameworks
• Prior experience managing process workflows within TPRM due diligence cycles and vendor/partner onboarding
• Experience tracking and analyzing external audits, KPIs, and compliance evidence collection
• Familiarity with AuditBoard or similar GRC platforms and documentation tools is a plus