Experienced or Senior GRC Analyst

You’re a high-performing cybersecurity GRC professional. You want to do meaningful work that makes a real impact. You’re ready to ditch rigid corporate structures and join a team that values excellence, growth, and collaboration. Welcome to Hotman Group — where we’re rethinking what a cybersecurity and compliance firm can be. We’re growing fast, solving complex problems for Fortune 1000 companies and high-growth startups alike — and we’re looking for an exceptional Experienced or Senior GRC Analyst to join us. This is a full-time, remote, contract-to-hire role, with top performers moving into permanent positions within 6 months.

What You'll Do

As an Experienced GRC Analyst, you'll be the trusted advisor our clients count on — helping them build stronger, safer businesses through world-class cybersecurity and GRC strategies. You will:

• Lead assessments and audits of security and IT control environments
• Design, implement, and mature cybersecurity and compliance programs
• Develop risk registers, conduct risk assessments, and track remediation efforts
• Create and refine policies, standards, and procedures that align with top frameworks (SOC 2, ISO 27001, NIST CSF, HIPAA, HITRUST, and more)
• Guide third-party vendor risk management programs
• Prepare clients for internal audits and external assessments
• Translate technical, regulatory, and business requirements into clear, actionable solutions
• Mentor junior analysts and contribute to the growth of our GRC practice

You won’t be stuck doing the same thing every day — you'll work on diverse, challenging projects across multiple industries, helping world-class organizations tackle their most critical security and compliance needs. What You Bring

• 5+ years of hands-on experience in GRC, cybersecurity, IT audit, risk management, or a related field
• Deep expertise in cybersecurity fundamentals and IT control frameworks
• Strong working knowledge of compliance standards (e.g., SOC 2, ISO 27001, NIST CSF, HIPAA, HITRUST)
• A track record of delivering high-quality client service, managing projects, and driving results
• Excellent writing skills — you can translate complexity into clear, polished deliverables
• Outstanding critical thinking, problem-solving, and organizational skills
• A high level of accountability, ownership, and professional maturity
• Curiosity, creativity, and a proactive, solutions-first mindset
• Comfort working independently in a fast-paced, remote environment

Bonus Points if you have industry certifications such as CISA, CISM, CISSP, CRISC, or are actively pursuing one.

Requirements

• Authorized to work in the U.S.
• Able to pass a background check
• Reliable high-speed internet and a secure remote work setup

Why Hotman Group? At Hotman Group, we’re not just another consulting firm. We are:

• Collaborative, not corporate: You’ll be part of a close-knit, supportive team where ideas are heard and results are celebrated.
• Growth-focused: We invest in your development because your success is our success.
• Client-obsessed: We go above and beyond to create amazing outcomes — and our clients notice.
• Energized and authentic: We believe doing great work should be exciting, meaningful, and even fun.

If you're looking for a place where you can do your best work, learn constantly, and make a real difference — you’ve just found it. Ready to take your GRC career to the next level? Apply now and let’s build something extraordinary together. No phone calls please. About Hotman Group, LLC At Hotman Group, we're redefining what it means to be a trusted partner in cybersecurity and GRC (Governance, Risk, and Compliance). We're a rapidly growing boutique firm dedicated to helping business leaders earn and keep the trust of their customers — all through expert guidance, flawless execution, and a deep commitment to quality. Our clients range from Fortune 1000 companies to fast-growing startups — and they all have one thing in common: they rely on us to deliver results that matter. Thanks to our comprehensive services, high retention rates, and client satisfaction, we’ve built a reputation as a team that gets it done, and gets it done right.

We offer

• Cybersecurity strategy and program development
• Fully managed programs, from implementation to maturation and remediation
• One-time projects like policies, audits, risk assessments, incident response planning, and more
• Support across top compliance frameworks like SOC 2, NIST CSF, ISO 27001, HITRUST, and others

Whatever the challenge, we’re ready to solve it — with precision, expertise, and heart.

Our Culture

At Hotman Group, we believe work should be more than just a job — it should be a place where you can grow, thrive, and have a great time doing it. We’ve intentionally left behind the rigid corporate culture to build something better: a collaborative, energizing environment where every voice matters and every team member is empowered to bring their full self to work. Here, you’ll tackle complex, meaningful problems, create real impact for our clients, and have a lot of fun along the way. If you’re passionate about excellence, excited by challenges, and ready to be part of a team that values both hard work and genuine connection, you’ll fit right in. Join us — and let’s build something amazing together. Apply tot his job Apply To this Job