Sr. Security Analyst

Job Summary:

The Senior Security Governance, Risk, and Compliance (GRC) Analyst will be responsible for developing, managing, and overseeing the organization's security governance, risk management, and compliance programs. This role ensures that the organization adheres to regulatory, contractual, and internal security requirements while identifying, assessing, and mitigating security risks. The analyst will work closely with internal teams and external auditors to ensure compliance with relevant security frameworks and regulatory standards.

Key Responsibilities:

• Lead the development and implementation of security governance, risk management, and compliance strategies.
• Maintain and monitor compliance with applicable security standards, regulations, and frameworks, such as ISO 27001, NIST, GDPR, PCI-DSS, SOC 2, and other relevant industry standards.
• Conduct risk assessments, identifying potential security risks and working with cross-functional teams to develop mitigation strategies.
• Prepare and lead internal and external security audits, ensuring timely and accurate responses to auditor requests.
• Develop and maintain security policies, standards, and procedures that align with regulatory and business requirements.
• Collaborate with internal stakeholders such as IT, Legal, HR, and Business Operations to ensure alignment with compliance and security objectives.
• Support the implementation of security awareness programs to enhance the organization’s security posture.
• Track and report on security metrics, audit results, and compliance status to senior leadership.
• Stay updated on the evolving regulatory and security landscape and provide recommendations to ensure the organization remains compliant and secure.
• Assist in incident response efforts by ensuring all response activities are conducted in accordance with compliance requirements.

Required Qualifications:

• Bachelor’s degree in Information Security, Computer Science, Information Systems, or a related field. Equivalent experience will be considered.
• 5+ years of experience in security governance, risk management, and compliance roles.
• In-depth knowledge of security frameworks and regulations (ISO 27001, PCI-DSS, SOC 2, NIST, GDPR, etc.).
• Strong experience with risk assessments, audits, and security controls implementation.
• Excellent analytical, organizational, and problem-solving skills.
• Exceptional written and verbal communication skills, with the ability to present complex security concepts to non-technical stakeholders.
• Relevant certifications such as CISA, CISM, CISSP, CRISC, or equivalent.

Preferred Qualifications:

• Experience working in a highly regulated industry such as financial services, healthcare, or technology.
• Hands-on experience with compliance tools and platforms (e.g., GRC tools, audit management software).
• Familiarity with cloud security, data privacy, and third-party risk management.
• Proven track record of working with internal and external auditors.

About Us

PublicSquare's platform connects Americans to high-quality businesses that share their values, both online and in their local communities. The primary mission of the platform is to help consumers "shop their values" and put purpose behind their purchases. PublicSquare has seen tremendous growth and proven to the nation that the parallel, "patriotic" economy can be a major force in commerce.

PublicSquare Company Values:

• We are united in our commitment to freedom and truth - that's what makes us Americans.
• We will always protect the family unit and celebrate the sanctity of every life.
• We believe small business and the communities who support them are the backbone of our economy.
• We believe in the greatness of this nation and will always fight to defend it.
• Our Constitution is non-negotiable - government isn't the source of our rights, so it can't take them away.

What We Offer:

• Company paid Medical, Dental, Vision, and Life Insurance
• 401(k) with company match
• Flexible time off policy
• Paid holidays
• Discounts on our brands
• Rewards & recognition bonuses
• More to come!