×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Information Security Cybersecurity Data Security

Senior GRC Analyst

Job in Southlake, Tarrant County, Texas, 76092, USA
Listing for: Greystar Worldwide, LLC
Full Time position
Listed on 2026-06-20
Job specializations:
  • IT/Tech
    Information Security, Cybersecurity, Data Security
Salary/Wage Range or Industry Benchmark: 100000 - 125000 USD Yearly USD 100000.00 125000.00 YEAR
Job Description & How to Apply Below

About Greystar

Greystar is a leading, fully integrated global real estate platform offering expertise in property management, investment management, development, and construction services in institutional-quality rental housing. Headquartered in Charleston, South Carolina, Greystar manages and operates over $300 billion of real estate in more than 265 markets globally with offices throughout North America, Europe, South America, and the Asia‑Pacific region. Greystar is the largest operator of apartments in the United States, managing over one million units/beds globally.

Across its platforms, Greystar has nearly $79 billion of assets under management, including over $35 billion of development assets and over $36.5 billion of regulatory assets under management. Greystar was founded by Bob Faith in 1993 to become a provider of world‑class service in the rental residential real estate business. To learn more, visit

Job Description Summary

The Senior GRC Analyst is responsible for executing the day‑to‑day activities of the Global Information Security Governance, Risk, and Compliance (GRC) program. This senior individual contributor performs security risk assessments, evaluates internal and third‑party security controls, supports compliance and audit activities, and helps administer the enterprise GRC technology platform used to monitor, track, and report on security measures. Works closely with the Manager, Information Security and the broader Information Security team to preserve the availability, integrity, and confidentiality of Greystar and customer information in compliance with applicable information security laws, policies, and standards.

Responsibilities
  • Execute information security GRC program activities including control assessments, policy and procedure reviews, exception management, and documentation of security processes for global locations.
  • Monitor for changes in laws, regulations, and industry standards affecting information security requirements (e.g., NIST, ISO 27001, PCI DSS, SOX, GDPR, CCPA), perform periodic compliance assessments, and translate changes into actionable requirements for the business.
  • Conduct periodic risk assessments across business units, applications, infrastructure, and processes. Document findings, partner with control owners on remediation plans, and track issues through closure.
  • Perform third‑party risk management activities, including pre‑contract security due diligence, recurring vendor risk reviews, and remediation tracking. Maintain the vendor risk inventory and supporting documentation.
  • Respond to client, regulator, and internal audit requests, including security questionnaires (SIG, CAIQ), evidence collection, and findings remediation. Coordinate cross‑functional input and maintain a library of standard responses.
  • Partner with Legal, Privacy, and other stakeholders to fulfill Electronically Stored Information (ESI) requests, including identification, preservation, collection, and chain‑of‑custody documentation in support of legal holds, investigations, and regulatory inquiries.
  • Audit internal control systems on a periodic basis to ensure that access levels, segregation of duties, and configuration baselines remain appropriate. Work closely with the Information Security Officer and Manager, Information Security to respond to audit findings that require action.
  • Run periodic user access reviews and privileged access reviews across in‑scope systems and applications. Coordinate with system owners and managers to validate access, document results, and drive timely remediation of inappropriate or excessive access.
  • Maintain the enterprise security awareness program, including company‑wide training curricula and ongoing awareness communications that promote secure behavior across the organization.
  • Operate the phishing simulation program, including campaign design, results analysis, and assignment of remediation training for users who require additional reinforcement.
  • Administer and enhance the enterprise GRC platform, including workflow configuration, control library maintenance, reporting, and user support.
  • Develop metrics, dashboards, and reporting on the health of…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search