GRC Analyst - INTL PH

The Senior Governance, Risk, and Compliance (GRC) Analyst leads and executes the organization’s GRC strategy, ensuring alignment with regulatory requirements, industry standards, and internal policies. This role is responsible for IT risk assessments, third party risk management, audit leadership, and security compliance initiatives.
As a senior member of the GRC function, this position serves as an escalation point for complex risk and compliance matters, mentors junior analysts, monitors performance metrics, and drives continuous improvement of the organization’s overall risk posture. The ideal candidate brings deep expertise in compliance frameworks, audit management, risk advisory, and GRC tooling, along with strong analytical, leadership, and communication skills.

We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment regardless of their race, color, ethnicity, religion, sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military or uniformed service member status, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com.To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/.

• Bachelor’s degree or equivalent relevant work experience
• 5+ years of experience in IT risk assessment, audit support, and security compliance
• Strong working knowledge of compliance frameworks, including ISO 27001:2013/2022, NIST SP 800 53, NIST CSF, and COBIT
• Hands on experience supporting SOC 1, SOC 2, SOC 3, and ISAE 3402 audits
• Proven experience leading or supporting Third Party Risk Management (TPRM) programs
• Familiarity with data privacy and regulatory requirements such as SOX, HIPAA, and GDPR
• Experience with GRC tools and platforms, including ServiceNow (tickets and CMDB), OneTrust, and SecurityScorecard
• Strong analytical, investigative, and problem solving skills
• Excellent written and verbal communication skills, including report writing and stakeholder presentations
• Strong organizational, time management, and multitasking abilities
• Demonstrated ability to mentor, supervise, and guide junior team members

• Professional certifications such as ISO Lead Implementer/Auditor, CISA, or equivalent security credentials
• Experience leading cross functional security and compliance initiatives
• Ability to present complex risk and compliance concepts to non technical audiences
• Demonstrated success improving an organization’s overall risk and compliance posture

Benefit packages for this role will start on the 1st day of employment and include medical, dental, and vision insurance, as well as HSA, FSA, and DCFSA account options, and 401k retirement account access with employer matching. Employees in this role are also entitled to paid sick leave and/or other paid time off as provided by applicable law.