Senior GRC Analyst

Job not on LinkedIn

🕒 May 15

🤠 Texas – Remote

🤠 Texas – Remote

⏳ Contract/Temporary

🟠 Senior

🚔 Compliance

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

Hotman Group, LLC

WebsiteLinkedInAll Job Openings

1 - 10 employees

Founded 2016

🔒 Cybersecurity

📋 Compliance

🤝 B2B

Cybersecurity • Compliance • B2B

Hotman Group, LLC is a leading provider of comprehensive cybersecurity and governance, risk, and compliance (GRC) services. The company assists business leaders in enhancing client trust by offering robust cybersecurity strategies and addressing GRC challenges. Hotman Group specializes in developing cybersecurity strategies, executing one-time projects, and augmenting staff. The firm helps businesses unify risk, compliance, and security in a sustainable manner, ensuring readiness for audits, and establishing business continuity plans. By focusing on both technology and the necessary human elements, Hotman Group aims to protect businesses fully and strategically align them with security compliance frameworks such as SOC 2 and NIST CSF.

📋 Description

• Lead assessments and audits of security and IT control environments • Design, implement, and mature cybersecurity and compliance programs • Develop risk registers, conduct risk assessments, and track remediation efforts • Create and refine policies, standards, and procedures aligned with top frameworks including SOC 2, ISO 27001, NIST CSF, HIPAA, HITRUST, CMMC, and others • Prepare clients for internal audits and external assessments • Translate technical, regulatory, and business requirements into clear, actionable deliverables for client stakeholders • Communicate findings, manage client feedback, and drive outcomes even when stakeholders push back • Mentor junior analysts and contribute to the growth of our GRC practice • Participate in peer review of deliverables before they go to clients.

🎯 Requirements

• Permanent authorization to work in the U.S. -- no sponsorship of any kind now or in the future • Able to pass a background check • Hands-on GRC experience with a track record of owning deliverables, producing frameworks-based documentation, and driving remediation -- not just supporting programs from the inside • Deep working knowledge of compliance standards including SOC 2, ISO 27001, NIST CSF, HIPAA, and HITRUST • Experience communicating findings and recommendations directly to clients or senior internal stakeholders • Excellent writing skills -- your deliverables are clear, polished, and do not require heavy editing before they go to a client • Strong critical thinking and professional judgment • A high level of accountability and ownership • Comfort working independently in a fully remote environment with minimal hand-holding • A default toward communication.

🏖️ Benefits

• Active certifications such as CISA, CISM, CISSP, or CRISC are strongly preferred. • Reliable high-speed internet and a secure, private remote workspace.