Acrisure
Lead Governance, Risk, and Compliance Analyst
Acrisure, Atlanta, Georgia, United States, 30383
Lead Governance, Risk, and Compliance Analyst
Join to apply for the
Lead Governance, Risk, and Compliance Analyst
role at
Acrisure .
About Acrisure A global fintech leader, Acrisure empowers millions of ambitious businesses and individuals with the right solutions to grow boldly forward. Bringing cutting‑edge technology and top‑tier human support together, we connect clients with customized solutions across a range of insurance, reinsurance, payroll, benefits, cybersecurity, mortgage services and more.
Job Description In the last twelve years, Acrisure has grown in revenue from $38 million to almost $5 billion and employs over 19 000 colleagues in more than 20 countries. Acrisure was built on entrepreneurial spirit. Prioritizing leadership, accountability, and collaboration, we equip our teams to work at the highest levels possible.
Job Summary We are seeking a highly experienced and motivated Senior GRC Analyst to join our dynamic team. The ideal candidate will have between 10 to 25 years of experience in responding to client/prospect compliance questionnaires and cybersecurity assessments, performing internal risk assessments, maintaining awareness of existing and proposed cyber security regulations, and hands‑on experience with audit, governance, risk, and compliance (GRC) frameworks. This individual will work across multiple departments to ensure security solutions protect both internal and third‑party (vendor) systems and customer data. You will play a critical role in ensuring that security practices are aligned with compliance requirements while driving technical solutions for secure systems and data protection across the entire organization.
Responsibilities
Seasoned GRC leader with deep expertise in cybersecurity frameworks, regulatory compliance, and risk management, capable of driving security initiatives across the enterprise.
Demonstrated expertise in completing security questionnaires, risk assessments, due diligence questionnaires (DDQs), RFIs, and other technical ad‑hoc requests from clients, regulators, and partners.
Strong command of GRC frameworks such as NIST CSF, ISO 27001, and COBIT, and ability to align technical and administrative controls with regulatory and audit requirements.
Lead internal and external audits, including SOC 2 Type I/II readiness, SOX ITGC testing, and HIPAA security rule assessments. Coordinate evidence collection and remediation efforts.
Requirements / Education and Experience
In‑depth experience with regulatory frameworks and standards including SOX, HIPAA, SOC 2, NYDFS Cybersecurity Regulation, GDPR, and PCI‑DSS, and staying current with evolving global cybersecurity laws and compliance obligations.
Proven ability to lead cross‑functional teams, mentor junior engineers, and serve as a subject‑matter expert in security technologies, tools, and frameworks. Strong communication skills to engage with technical and non‑technical stakeholders.
5+ years of relevant experience in security engineering and GRC‑focused security solutions development.
Deep understanding of security standards and frameworks such as NIST, ISO 27001, CIS Controls, and industry compliance regulations (NYDFS, GDPR, HIPAA, PCI‑DSS).
Proven ability to manage complex timelines and deliverables, ensuring alignment with organizational goals and regulatory requirements.
Strong leadership and communication skills, with a track record of engaging stakeholders and guiding security teams toward shared objectives.
Candidates should be comfortable with an on‑site presence to support collaboration, team leadership, and cross‑functional partnership.
Benefits and Perks
Competitive compensation
Generous vacation policy, paid holidays, and paid sick time
Medical insurance, dental insurance, and vision insurance (employee‑paid)
Company‑paid short‑term and long‑term disability insurance
Company‑paid group life insurance
Company‑paid employee assistance program (EAP) and Calm App subscription
Employee‑paid pet insurance and optional supplemental insurance coverage
Vested 401(k) with company match and financial wellness programs
Flexible Spending Account (FSA), Health Savings Account (HSA), and commuter benefits options
Paid maternity leave, paid paternity leave, and fertility benefits
Career growth and learning opportunities
…and so much more!
Note: This list is not exhaustive of all benefits. Enrollment waiting periods or eligibility criteria may apply to certain benefits. Offerings may vary based on subsidiary entity or geographic location.
Making a lasting impact on the communities it serves, Acrisure has pledged more than $22 million through its partnerships with Corewell Health Helen DeVos Children’s Hospital, UPMC Children’s Hospital, and Blythedale Children’s Hospital.
Equal Opportunity Employer Acrisure is an equal‑opportunity employer. We consider qualified applicants without regard to race, color, religion, sex, national origin, disability, or protected veteran status and provide reasonable accommodation for qualified individuals with disabilities or based on a sincerely held religious belief.
Pay Details The base compensation range for this position is $120,000 – $140,000. This range reflects Acrisure’s good‑faith estimate at the time of this posting. Placement within the range will be based on a variety of factors, including but not limited to skills, experience, qualifications, location, and internal equity.
Seniority Level Mid‑Senior level
Employment Type Full‑time
Job Function
Legal
Insurance
Referrals increase your chances of interviewing at Acrisure by 2x.
#J-18808-Ljbffr
Lead Governance, Risk, and Compliance Analyst
role at
Acrisure .
About Acrisure A global fintech leader, Acrisure empowers millions of ambitious businesses and individuals with the right solutions to grow boldly forward. Bringing cutting‑edge technology and top‑tier human support together, we connect clients with customized solutions across a range of insurance, reinsurance, payroll, benefits, cybersecurity, mortgage services and more.
Job Description In the last twelve years, Acrisure has grown in revenue from $38 million to almost $5 billion and employs over 19 000 colleagues in more than 20 countries. Acrisure was built on entrepreneurial spirit. Prioritizing leadership, accountability, and collaboration, we equip our teams to work at the highest levels possible.
Job Summary We are seeking a highly experienced and motivated Senior GRC Analyst to join our dynamic team. The ideal candidate will have between 10 to 25 years of experience in responding to client/prospect compliance questionnaires and cybersecurity assessments, performing internal risk assessments, maintaining awareness of existing and proposed cyber security regulations, and hands‑on experience with audit, governance, risk, and compliance (GRC) frameworks. This individual will work across multiple departments to ensure security solutions protect both internal and third‑party (vendor) systems and customer data. You will play a critical role in ensuring that security practices are aligned with compliance requirements while driving technical solutions for secure systems and data protection across the entire organization.
Responsibilities
Seasoned GRC leader with deep expertise in cybersecurity frameworks, regulatory compliance, and risk management, capable of driving security initiatives across the enterprise.
Demonstrated expertise in completing security questionnaires, risk assessments, due diligence questionnaires (DDQs), RFIs, and other technical ad‑hoc requests from clients, regulators, and partners.
Strong command of GRC frameworks such as NIST CSF, ISO 27001, and COBIT, and ability to align technical and administrative controls with regulatory and audit requirements.
Lead internal and external audits, including SOC 2 Type I/II readiness, SOX ITGC testing, and HIPAA security rule assessments. Coordinate evidence collection and remediation efforts.
Requirements / Education and Experience
In‑depth experience with regulatory frameworks and standards including SOX, HIPAA, SOC 2, NYDFS Cybersecurity Regulation, GDPR, and PCI‑DSS, and staying current with evolving global cybersecurity laws and compliance obligations.
Proven ability to lead cross‑functional teams, mentor junior engineers, and serve as a subject‑matter expert in security technologies, tools, and frameworks. Strong communication skills to engage with technical and non‑technical stakeholders.
5+ years of relevant experience in security engineering and GRC‑focused security solutions development.
Deep understanding of security standards and frameworks such as NIST, ISO 27001, CIS Controls, and industry compliance regulations (NYDFS, GDPR, HIPAA, PCI‑DSS).
Proven ability to manage complex timelines and deliverables, ensuring alignment with organizational goals and regulatory requirements.
Strong leadership and communication skills, with a track record of engaging stakeholders and guiding security teams toward shared objectives.
Candidates should be comfortable with an on‑site presence to support collaboration, team leadership, and cross‑functional partnership.
Benefits and Perks
Competitive compensation
Generous vacation policy, paid holidays, and paid sick time
Medical insurance, dental insurance, and vision insurance (employee‑paid)
Company‑paid short‑term and long‑term disability insurance
Company‑paid group life insurance
Company‑paid employee assistance program (EAP) and Calm App subscription
Employee‑paid pet insurance and optional supplemental insurance coverage
Vested 401(k) with company match and financial wellness programs
Flexible Spending Account (FSA), Health Savings Account (HSA), and commuter benefits options
Paid maternity leave, paid paternity leave, and fertility benefits
Career growth and learning opportunities
…and so much more!
Note: This list is not exhaustive of all benefits. Enrollment waiting periods or eligibility criteria may apply to certain benefits. Offerings may vary based on subsidiary entity or geographic location.
Making a lasting impact on the communities it serves, Acrisure has pledged more than $22 million through its partnerships with Corewell Health Helen DeVos Children’s Hospital, UPMC Children’s Hospital, and Blythedale Children’s Hospital.
Equal Opportunity Employer Acrisure is an equal‑opportunity employer. We consider qualified applicants without regard to race, color, religion, sex, national origin, disability, or protected veteran status and provide reasonable accommodation for qualified individuals with disabilities or based on a sincerely held religious belief.
Pay Details The base compensation range for this position is $120,000 – $140,000. This range reflects Acrisure’s good‑faith estimate at the time of this posting. Placement within the range will be based on a variety of factors, including but not limited to skills, experience, qualifications, location, and internal equity.
Seniority Level Mid‑Senior level
Employment Type Full‑time
Job Function
Legal
Insurance
Referrals increase your chances of interviewing at Acrisure by 2x.
#J-18808-Ljbffr