×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Information Security GRC Analyst

Job in South Portland, Cumberland County, Maine, 04106, USA
Listing for: Consolidated Communications
Full Time position
Listed on 2026-02-14
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 91244 - 138299 USD Yearly USD 91244.00 138299.00 YEAR
Job Description & How to Apply Below

Major Duties

Classification:
Exempt, Non-Bargaining. Position may be remote; within commuting distance to the office in South Portland, ME area.

This position will require an additional national security background check by the US Department of Justice as a condition of employment.

The Information Security GRC Analyst will be responsible for identifying, analyzing and influencing the management of information risks across the organization. Additionally, this person will be responsible for compliance and security awareness program activities. A primary focus will be the management of the Vendor Risk Management program.

Responsibilities
  • Performs focused information governance, risk and compliance assessments of existing or new services and technologies, along with business counterparts.
  • Communicates governance, risk and compliance assessment findings to team owners and custodians of information risk "business partners," or information governance teams and information security teams.
  • Provides consultative advice to information governance or security teams that enables them to suggest informed governance, risk and compliance management decisions.
  • Identifies and facilitates implementation of appropriate controls to effectively manage information risks as needed.
  • Identifies opportunities to improve governance, risk and compliance posture, developing solutions for remediating or mitigating risks and assessing the residual risk.
  • Maintains strong working relationships with individuals and groups involved in managing information governance, risk and compliance across the organization.
  • Some travel may be required.
Qualifications
  • Strong knowledge of IT functions
  • Ability to identify and assess the severity and potential impact of risks. Communicate risk assessment findings to risk owners outside the cybersecurity program in a way that consistently drives objective, fact-based decisions about risk that optimize the trade-off between risk mitigation and business performance.
  • An understanding of organizational mission, values, goals and consistent application of this knowledge.
  • An ability to work on several tasks simultaneously and pay attention to sources of information from inside and outside one's network within an organization.
  • An ability to apply original and innovative thinking to produce new ideas.
  • An understanding of business needs and commitment to delivering high-quality, prompt and efficient service to the business.
  • An ability to effectively influence others to modify their opinions, plans or behaviors.
  • Excellent prioritization capabilities, with an aptitude for breaking down work into manageable parts, effectively assessing the priority and time required to complete each part.
  • Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one.
  • Strong problem-solving and troubleshooting skills. Familiarity with Service Providers.
  • Be willing and able to hold a U.S. Government Secret clearance.

Education and Experience:

  • BS in Business, Computer Science, Information Security or a related field required, MA is preferred.
  • 6+ years of work experience in information security, especially in a GRC role to include regulatory compliance and information security management frameworks (e.g., International Organization for Standardization [IS0] 27000, COBIT, National Institute of Standards and Technology [NIST] 800-53/171 and related standards)
  • Desired certifications:
    Certified Information Security Manager (CISM), and/or Certified Information Systems Auditor (CISA)
Benefits Offered
  • 401(k) matching
  • Medical, Rx, Dental and Vision insurance
  • Disability insurance
  • Flexible spending account
  • Health savings account
  • Life insurance
  • Tuition reimbursement
  • Paid vacation and personal days
  • Paid holidays
  • Employee Assistance Program
  • Annual bonus program to eligible employee's based upon organization performance
Salary

Pay range (commensurate with skills and experience): $91,244 - $138,299

Equal Opportunity Employer

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender identity or expression, sexual orientation, national origin, marital status, familial status, genetics, disability, age, veteran status or any other characteristic protected by law.

#J-18808-Ljbffr
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search