Why Great Gray?
At Great Gray Group, we strive to set the bar for the retirement services industry. Our goal is to deliver advanced retirement solutions that combine our core fiduciary services with robust investment options, innovative technology, and dedicated client service. We focus on making choices clearer, transitions smoother, and the client experience more delightful. Complacency isn't in our vocabulary. Every day, we look for opportunities to better serve our clients, be an excellent business partner, and earn the trust of those who rely on us.
The Role
Great Gray is looking to add a Senior Information Security Analyst on our Information Security Team. The role will support IT governance, risk assessment, and security compliance functions and will be involved in monitoring and maintaining elements of overall IT governance, enterprise risk management, and compliance with regulations and control frameworks such as SOC2, CIS18, and NIST CSF. The analyst will focus on facilitating the review, development, implementation, and documentation supporting the ISMS policies, processes, procedures, and practices.
Location
This position will be remote. Candidate may work where they live anywhere in the United States.
Visa sponsorship or transfer of an existing visa is not available for this position. Applicants must be authorized to work directly for any employer in the United States without visa sponsorship or transfer.
Responsibilities
· IT governance & oversight, risk assessment, and security awareness.
· Internal auditing & evidence collection for IT controls compliance (PCI, SOX) and cybersecurity ISMS frameworks (SOC2)
· Vendor Risk Management assessment, onboarding, and reviews.
· Business Impact Analysis (BIA), and Sensitive Data Reviews (SDR).
· User Rights Management (URM) and Privileged Access Management (PAM) reviews for critical applications.
· Provide support in the assessment, design, and implementation of technical control requirements.
· Identify and recommend changes to improve efficiency and the effectiveness of key technical controls and processes.
· Work with control owners and system administrators to ensure quality, consistency, and operability of new and existing controls.
· Support the review of IT systems and tools to ensure the inclusion of appropriate controls and processes.
· Review test findings, support the remediation of IT control gaps, and escalate potential issues to management, where necessary.
· Validate and update IT documentation as needed to ensure processes, policies and controls are accurate.
· Complete other related duties as assigned.
Qualifications & Experience
· Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or equivalent experience with auditing and compliance oversight for IT security.
· 5+ years of audit, compliance, or technical experience.
· Excellent knowledge of IT security control trends as well as auditing & compliance best practices.
· Effective communication skills (written and verbal) to properly articulate complicated IT controls and compliance issues to leadership and partners.
· Positive attitude and a strong commitment to delivering quality work.
· Relevant training and/or industry certifications in auditing, compliance, or IT security.
· Ability to thrive in a fast-paced, dynamic environment and manage multiple priorities effectively.
· Comfortable navigating ambiguity.
· Your standards reflect our core values: Growth Mindset, Disciplined Curiosity, Grit, Results-Driven, Collaborative.
Benefits
We have a comprehensive and competitive benefits package at Great Gray. Some of the highlights are:
· Be an integral part of an early-stage, high-growth organization!
· Hybrid work environment
· Competitive compensation package including 401(k) with elective and non-elective match opportunities
· Lifestyle spending allowance program
· Medical, Dental, Vision Insurance
· Employer-paid life and disability insurance
· Generous and well-deserved, paid time off program
Company Background
Great Gray is the leading independent provider of trustee and administrative services to Collective Investment Trusts (“CITs”), with over $200 billion in CIT assets undermanagement, across more than 780 funds. We proudly work with over 80 subadvisors, including leading firms such as AllianceBernstein, American Funds, BlackRock, Franklin Templeton, MetLife, Neuberger Berman, PGIM, PIMCO and Raymond James.
CITs are more than just an investment vehicle. They represent a forward-thinking approach to retirement planning. These tax-exempt, pooled investment vehicles are offered to employer-sponsored retirement plans, like 401(k)s. CITs are comparable to mutual funds, but, because they are tailored for the institutional retirement market, they can offer distinct advantages, including efficient administration and cost-effectiveness. CITs have a history dating back over 90 years; but they have gained favor over the past decade, driven by innovations, and Great Gray has been at the forefront.
Great Gray has consistently delivered year-over-year growth at an above market rate and is investing in the continued development of its core CIT business as well as complementary administrative services and technology solutions for the retirement market.
Madison Dearborn Partners (“MDP”) purchased Great Gray from Wilmington Trust in April 2023. As a result, Great Gray is an independent company owned by funds affiliated with MDP.
Investor Background
MDP is a leading private equity investment firm based in Chicago. Since MDP's formation in 1992, the firm has raised aggregate capital of over $28 billion and has completed over 150 platform investments. MDP invests across five dedicated industry verticals, including basic industries; business and government software and services; financial and transaction services; health care; and telecom, media, and technology services.
Equal Employment Opportunity Policy
Great Gray, LLC is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender perception or identity, national origin, age, marital status, protected veteran status, disability status or other non-merit factor.
Loading similar jobs...
Discover fully remote job opportunities in the United States at USA Remote Jobs. Apply for roles like Software Developer, Customer Service Specialist, Project Manager, and more!