Information Security Analyst

Infosec Analyst

Hybrid: Boston, MA - 3 days onsite

Contract: 6-month

We’re looking for an Information Security Analyst with a GRC focus to join a leading financial organization on a contract-basis.

Responsibilities:

• Support the Governance, Risk & Compliance (GRC) function, including ISO 27001, NIST, SOC 2, and other compliance frameworks.
• Assist with security operations and incident response activities.
• Collaborate across teams to develop and maintain security policies, procedures, and controls.
• Contribute to vulnerability management, risk assessments, and third-party risk management.
• Produce and report key security metrics to demonstrate compliance and governance effectiveness.

Requirements:

• 3–5 years’ experience in information security, preferably in financial services.
• Strong background in GRC, compliance, and risk management (ISO, NIST, SOC 2).
• Experience supporting security audits, certifications, or assessments.
• Knowledge of security operations and incident response processes.
• Not a hands-on engineer, the focus here is on governance, risk, and compliance.

More Info

• Work on high-impact compliance and risk programs.
• Gain exposure to leading frameworks and security tools.
• Collaborative, cross-functional team environment.

If you’re a Infosec professional with a GRC background, we’d love to hear from you.

Apply now or get in touch!