Cyber Risk Analyst- GRC || Cincinnati, OH/Charlotte, NC/ Portland, OR (Hybrid)

Job Title: Cyber Risk Analyst- GRC

Location:  Cincinnati, OH/Charlotte, NC/ Portland, OR (Hybrid)

Duration : Long Term Contract

Interview: Virtual

Visa: USC/GC

Experience: 2-4 Years

We are specifically looking for candidates with 2–3 years of experience, not a recent graduates. Candidates with more than 5 years of experience should not be accepted.
Regarding compensation, for a candidate with 3 years of experience.

Location Preferences: Preferably Cincinnati, OH (must be within 45 minutes and available for onsite work 4 days per week if converted)

·        Open to candidates in Charlotte, NC, or Portland, OR 
Must be located within 1 hour of a tech hub
Interview Schedule: Interviews are set for 7/17. While three candidates are already lined up, the hiring manager is actively looking for stronger fits.

Key Requirements:

·        Experience: 1–3 years in Cyber Risk Management (not open to recent graduates)
·        GRC Tools Knowledge: Familiarity with tools like MetricStream (preferred), Archer, or ServiceNow
·        Hands-On Cyber Risk Experience: Must have practical experience in cyber risk (not threat intelligence or resiliency)
·        Bonus Skills: Exposure to business impact analysis
·        Technical Skills: Proficiency in Excel and Power BI for reporting
·        Communication: Strong written and verbal communication skills, with the ability to interact effectively with both analysts and senior executives (e.g., VPs)
·        Industry Background: Retail experience is a plus
Project Scope:
This role is part of an ongoing Cyber Risk Management Program, now in its third year. The focus will be on:

·        Data entry and reporting
·        Pulling data and ensuring risk visibility
·        Reporting cyber risks
Team Structure:
The team currently consists of a Strategic Lead, Operations Lead, Senior Analyst, and an Admin.

Candidate Profile:

·        Top Skills: Solid background in risk management, specifically cyber risk, with at least some hands-on experience in a cyber-related role.
·        Soft Skills: Excellent communication skills (both written and verbal), ability to engage effectively with all organizational levels, and a genuine interest in cyber risk management.
Non-Negotiables:

·        Must demonstrate enthusiasm and a strong desire to excel in cyber risk management
If you have candidates who meet these criteria, please send profiles as soon as possible. We are looking for professionals who are eager to contribute to this critical program.