GRC Analyst

The Cason Group serves insurance professionals by delivering creative sales and service solutions that exceed expectations through Group Benefits, Individual Medical, and Financial Services.

Job Title: GRC Analyst
Division: Infrastructure/ IT
Location: Columbia, SC
Type: Full-Time; May be eligible for hybrid work schedule after successful completion of training
Hiring Range: $65,000 - $80,000 annually (commensurate with directly applicable experience)
Commitment: Two-Year Commitment to The Cason Group

Our Information Technology team provides resources and support to employees of The Cason Group throughout all central and remote locations. As a GRC Analyst, you will play a key role in advancing our governance, risk management, and compliance initiatives. This position works closely with the IT Director and business stakeholders to support security, compliance, risk management, and emerging technology governance efforts, including AI and automation solutions. The ideal candidate is detail-oriented, proactive, and comfortable working independently while collaborating across departments.

What Our GRC Analysts Do:

Lead Governance & Compliance Initiatives

• Support and maintain the organization's IT governance framework.
• Coordinate policy reviews, control updates, and governance processes.
• Assist with SOC 2 compliance activities, evidence collection, and audit support.
• Conduct vendor security assessments and maintain compliance documentation.

Manage Risk

• Maintain the company's information security risk register and treatment plans.
• Perform periodic risk assessments and document identified risks and mitigation efforts.
• Track remediation efforts and escalate significant risks when appropriate.

Support Security & Technology Governance

• Review permissions, access controls, and data handling practices for approved solutions.
• Evaluate automation and AI requests to ensure alignment with company security and governance standards.
• Help ensure approved technologies are properly tested and governed before production deployment.
• Support governance-related configurations within approved technology platforms.

Partner & Communicate

• Serve as a primary point of contact for governance and compliance-related requests.
• Collaborate with internal teams, vendors, and external partners.
• Communicate decisions, expectations, and timelines clearly to stakeholders across the organization.

What We Are Looking For:

• Associate degree or equivalent experience and/or professional designations.
• Minimum of four years of experience in a related field, such as:
  • IT Governance
  • Information Security
  • Compliance
  • Risk Management
  • Audit Support
  • Systems Administration
• Experience with SOC 2, vendor assessments, or audit evidence processes preferred.
• Experience with Microsoft 365 governance, Power Platform governance, and/or Azure administration preferred.
• Proficiency in Microsoft Outlook, Excel, and Word.
• Strong written and verbal communication skills with the ability to communicate technical concepts to a variety of audiences.
• Ability to exercise sound judgment and maintain confidentiality when handling sensitive information.

Why You Should Work With Us:

• Excellent Benefits: Health, Dental, Vision, Life, and Disability insurance options
• 401K Retirement Plan with company contribution
• Paid Time Off (vacation and holidays)
• Employee Assistance Program
• Charitable Matching and Paid Community Service Time