|
REMOTE POSITION
Lee Enterprise is looking for a motivated GRC Analyst to join our small but high-impact team. If you've got 1-3 years of experience in governance, risk, compliance, or audit - and you're eager to sharpen your skills in a fast-moving environment - this could be the role for you.
Our mandate is simple but powerful: risk comes first. We don't just monitor IT risk - we drive enterprise-wide risk management, working hand-in-hand with Legal, Finance, IT, and Operations to make smarter, safer business decisions.
The ideal candidate is curious, detail-oriented, and confident navigating frameworks like NIST CSF and COBIT 2019. You know your way around policy writing, compliance standards, and risk registers - and you're ready to grow those skills with real-world impact.
This role is a launchpad: you'll gain hands-on exposure across risk domains, help shape governance culture, and contribute to a team that puts risk awareness at the center of how we operate.
Key Responsibilities
Risk Identification & Monitoring
- Assist in spotting, assessing, and tracking risks across IT and enterprise functions.
- Help maintain and update the enterprise risk register to keep leadership informed.
Governance & Compliance
- Draft and maintain policies, standards, and procedures that support a strong governance culture.
- Contribute to compliance initiatives and awareness campaigns that build risk-minded behaviors across the business.
Framework Application
- Support alignment of controls with frameworks such as NIST CSF & COBIT 2019.
- Assist in mapping and monitoring controls to regulatory and business requirements.
- Collaboration & Reporting
- Partner with Legal, Finance, IT, and Operations to strengthen enterprise-wide risk awareness.
- Prepare clear dashboards, reports, and presentations that communicate risk and compliance metrics to stakeholders.
Team Enablement
- Provide day-to-day operational and administrative support to the GRC function.
- Bring curiosity, attention to detail, and a risk-first perspective to every project.
Qualifications
Must Have:
- Bachelor's degree in Information Security, Risk Management, Business Administration, or related field (or equivalent experience).
- 1-3 years of experience in governance, risk, compliance, IT audit, or related fields.
- Familiarity with enterprise risk management concepts and methodologies.
- Knowledge of common GRC and cybersecurity frameworks (e.g., NIST, ISO, SOC 2, COBIT, COSO).
- Experience writing and editing policies, standards, or procedures.
- Strong organizational and communication skills, with ability to explain technical concepts to non-technical audiences.
- Analytical mindset with attention to detail and problem-solving ability.
Nice to Have:
- Experience on a dynamic enterprise level-team supporting cross functional objectives.
- Exposure to GRC or risk management tools/platforms.
- Experience supporting risk assessments, audits, or control testing.
- Industry certifications (e.g., Security+, CISA, CRISC, CISM, CGRC) a plus.
Why Join Us?
- Join a small, high-impact team with enterprise-wide visibility.
- Gain hands-on experience in both enterprise and IT risk management.
- Contribute to building a risk-aware culture in a forward-thinking organization.
- Access mentorship, career development opportunities, and exposure to senior leadership.
Hiring Salary Range
$70,000 - $100,000
recblid ljy4ks2em9zcliu33htwy8iomk5axs
|
Lee Enterprises Inc
Sep 07, 2025