Entry Level GRC Analyst

Reposted 11 Days Ago
Fort Worth, TX, USA
In-Office
Internship
Information Technology • Consulting • Cybersecurity
The Role
As an Entry-Level GRC Analyst, you will assess client security and IT controls, develop policies, and implement compliance frameworks while working hands-on with GRC tools.
Summary Generated by Built In

About the Role 

Hotman Group is a boutique cybersecurity and GRC consulting firm doing meaningful work for clients who need GRC done right ranging from Fortune 1000 companies to high-growth startups. We are looking for a driven, detail-obsessed early-career professional who is ready to apply your professional foundation to real GRC consulting work and contribute to real client work from day one. 

This is a full-time, remote, contract-to-hire position. Top performers move into permanent roles within 6 months. 

What You Will Do 

As an Entry Level GRC Analyst at Hotman Group you will work side by side with senior team members and partners to help our clients strengthen their cybersecurity and compliance programs. You will: 

  • Assess and improve client security and IT controls 
  • Develop policies, processes, and risk assessments aligned to top frameworks including NIST, ISO 27001, and SOC 2 
  • Crosswalk and harmonize controls across multiple compliance frameworks 
  • Document security requirements, support control implementation, and help track remediation progress 
  • Build risk registers, support assessments, and monitor remediation progress 
  • Work hands-on with GRC tools and contribute to solutions for complex client challenges 
  • Translate technical and regulatory requirements into clear, actionable steps for our clients 
  • Participate in peer review of deliverables before they go to clients — your work will be reviewed and you will review others 

You will touch every aspect of cybersecurity and GRC work across multiple industries. Every engagement brings new challenges and new opportunities to grow. 

What You Bring 

  • A Bachelor's or Graduate degree in Cybersecurity, Information Systems, or a related field 
  • 1 to 2 years of professional work experience -- this does not need to be in GRC or cybersecurity specifically, but it does need to be in a professional office or corporate environment. We are looking for candidates who have demonstrated reliability, communication, and accountability in a workplace setting 
  • Solid understanding of fundamental security and IT concepts including access controls, data retention, and change management 
  • Familiarity with major security and privacy frameworks including ISO, NIST, SOC 2, and HIPAA 
  • Strong critical thinking, organization, and communication skills 
  • Ability to balance multiple projects and deadlines with exceptional follow-through 
  • Technical aptitude -- you are curious, you learn fast, and you do not shy away from new tools 
  • A genuine interest in cybersecurity and a commitment to helping organizations build stronger, safer programs 
  • A solutions-first attitude -- you show up with curiosity and energy and you are not afraid to dive into the work 
  • The ability to think critically and execute with precision in a fast-paced, high-trust, low-ego environment 
  • A high level of ownership and accountability -- you communicate proactively and follow through without being managed closely 
  • A default toward communication — you keep the team informed, you acknowledge quickly, and you do not go dark on a deliverable or a client 

Active pursuit of a relevant certification (Security+, CC, SSCP) is strongly preferred. If you are not currently studying for one, be prepared to explain why. 

Requirements 

  • Located in the USA with permanent work authorization (no sponsorship of any kind now or in the future)
  • Able to pass a background check 
  • A private, dedicated workspace with a door — client calls and confidential work require it

Our Hiring Process 

Our process is designed to be straightforward but thorough. In addition to a written questionnaire and video responses, finalists will complete a practical skills assessment before advancing to a panel interview with our delivery team. The assessment is designed to reflect real GRC work. If you are serious about building a career in this field, it is your opportunity to show us what you can do. 

Why Hotman Group 

At Hotman Group we are not just another consulting firm. You will work alongside people who care about the craft and push each other to do better. No politics, no silos, no hierarchy between you and the people making decisions. 

You will touch more GRC frameworks, more industries, and more client situations in one year here than most practitioners see in five. You will grow because the work demands it. 

The clients you serve will actually notice your work. You are not a number on a headcount. Your name is on the deliverable. 

If you want to do real GRC work, get better at it every day, and work with a team that holds itself to a high standard — this is the place. 

No phone calls or emails please.

Skills Required

  • Bachelor's or Graduate degree in Cybersecurity, Information Systems, or a related field
  • 0-2 years of relevant experience (cybersecurity, audit, risk, compliance, GRC)
  • Strong understanding of security and IT concepts
  • Familiarity with major security and privacy frameworks (ISO, NIST, SOC 2, HIPAA)
  • Strong critical thinking, organization, and communication skills
  • Ability to balance multiple projects and meet deadlines
  • Technical aptitude and willingness to learn new tools
  • Located in the USA with permanent work authorization
  • Ability to pass a background check
  • Reliable internet and a secure remote workspace
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Dallas-Fort Worth, TX
14 Employees
Year Founded: 2016

What We Do

Since 2016, Hotman Group has worked with hundreds of business leaders to help them feel more confident in their cybersecurity programs. We take the build - implement - run approach to ensure each client is fully equipped to do the right thing when it comes to cybersecurity. First, we start with an assessment to determine where you are based on a benchmark within a security compliance framework like SOC 2, NIST CSF, and others. Then, we strategically prioritize your action items based on the risks to your business. Lastly, we help you set the bar based on the objective you'd like to reach.From a self-governed discipline to an all-inclusive cybersecurity program to the strictest audits, we help you handle it all. Most companies look at their cybersecurity piecemeal, inadvertently putting themselves at risk. With Hotman Group, we approach cybersecurity strategically, with a plan so you can be fully protected. Specialities: vCISO/ Fractional CISO, Cybersecurity, Risk Assessment, Gap Assessment, Maturity, Assessment, SOC 2, HITRUST, HIPAA, NIST CSF, NIST 800-53, ISO 27001, FFIEC, SOC 2 Readiness, Remediation, Auditor Support, Regulator Support, SOC 2 Audit, Data Protection (PHI, PII, PI), Risk Management (ERM), Privacy (GDPR, CCPA, SOC 2), GRC, Third Party Risk Management (TPRM), Supply Chain Risk, Vendor Risk, Business Continuity, Disaster Recovery, Business Impact Analysis (BIA), Metrics, Breach Support, Incident Response (IR), Tabletops

Similar Jobs

Chewy Logo Chewy

Licensed Healthcare Agent

eCommerce • Healthtech • Pet • Retail • Pharmaceutical
Hybrid
Richardson, TX, USA
17800 Employees
21-21 Hourly

Samsara Logo Samsara

Consultant

Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
Easy Apply
Remote or Hybrid
United States
4000 Employees
101K-136K Annually

Samsara Logo Samsara

Consultant

Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
Easy Apply
Remote or Hybrid
United States
4000 Employees
101K-136K Annually

Samsara Logo Samsara

Engagement Services Manager

Artificial Intelligence • Cloud • Computer Vision • Hardware • Internet of Things • Software
Easy Apply
Remote or Hybrid
United States
4000 Employees
101K-136K Annually

Similar Companies Hiring

Amplify Platform Thumbnail
Fintech • Financial Services • Consulting • Cloud • Business Intelligence • Big Data Analytics
Scottsdale, AZ
62 Employees
Standard Template Labs Thumbnail
Artificial Intelligence • Information Technology • Software
New York, NY
25 Employees
Golden Pet Brands Thumbnail
Digital Media • eCommerce • Information Technology • Marketing Tech • Pet • Retail • Social Media
El Segundo, California
178 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account