Governance, Risk and Compliance Analyst

Job Title:  Governance, Risk, & Compliance Analyst

Department:  Information Security

Location:  Remote or Hybrid (Grand Rapids, MI)

About Acrisure

Acrisure is a global Fintech leader that combines the best of humans and high tech to offer multiple financial products and services to millions of businesses and individual clients. We connect clients to solutions that help them protect and grow what matters, including Insurance, Reinsurance, Cyber Services, Mortgage Origination and more.

Acrisure employs over 17,000 entrepreneurial colleagues in 21 countries and have grown from $38 million to $4.3 billion in revenue in just over ten years. Our culture is defined by our entrepreneurial spirit and all that comes with it: innovation, client centricity and an indomitable will to win.

Responsibilities:

• Assist in the design, implementation, and testing of SOX controls, ensuring they meet regulatory requirements and effectively mitigate risks.
• Collaborate with the Information Security team to maintain SOC 2 certification, including conducting risk assessments and supporting audit activities.
• Provide comprehensive support for internal and external audits, including evidence gathering, coordination, and addressing findings.
• Conduct regular risk assessments, maintain the risk register, and work with stakeholders to develop and implement effective risk mitigation strategies.
• Assist in other GRC activities, such as third-party risk assessments, security awareness training, and maintaining compliance with additional regulatory frameworks (e.g., NYDFS, GDPR, HIPAA)

Requirements:

• Able to work independently and enjoy a high degree of interaction with team members
• Ability to contribute to a collaborative environment by consistently demonstrating teamwork, high motivation, positive behavior and effort to achieve goals and objectives
• Self-motivated and driven
• Maintain a sense of urgency and ability to work with and meet deadlines
• Demonstrate effective written and verbal communication, including the ability actively listen, and problem solve with minimal assistance
• Demonstrates excellent time management and prioritization skills
• Attention to detail and commitment to a high level of accuracy
• The ability to multitask, prioritize, work independently, and use discretion surrounding sensitive information
• Ability to maintain a professional demeanor and positive attitude

Education/Experience:

• A seasoned professional with 5+ years of progressive experience in IT security
• Proven expertise in managing timelines and deliverables effectively.
• Strong leadership skills with the ability to inspire and guide a team of security professionals.
• Excellent communication and interpersonal skills, with the ability to engage effectively with all levels of the organization and external partners.

Benefits & Perks:

• Competitive Compensation
• Industry Leading Healthcare
• Savings and Investments
• Charitable Giving Programs
• Offering hybrid work option           
• Opportunities for Growth
• Parental Leave
• Generous time away