GRC Analyst Consultant

ABOUT KALLES GROUP:

Everyone deserves to be secure. Our mission at Kalles Group is to help secure the future for companies of all shapes and sizes.

While our expertise spans multiple disciplines, our method remains consistent: building trust and relationship with people -- whether you are a client, a consultant, or--in this case--a candidate.

No matter what role you come from--whether you're an executive or just starting your career-you can expect our highest level of attention and respect. We want to find the right fit for each role, but we also want you to find the right fit for your career.

We believe the best way to show you what our team is like is to treat you like you're already a part of it. We hope you'll consider joining our team of experienced professionals who are building their careers at Kalles Group—and having fun while doing it.

WHAT YOU WILL DO:

As a GRC Analyst Consultant, you will support the organizational compliance effort of our client by developing and implementing controls, preparing for audits, and monitoring conformance. Your role on the Privacy team, includes designing testing procedures, promoting risk mitigation, and fostering a culture of accountability. You will identify and address risks, evaluate findings, and collaborate with internal teams to ensure compliance. We anticipate this role being up to 40 hours/week. We are open to C2C.

You will:

• Monitor cookies, trackers, and pixels on domains to identify unapproved elements.
• Analyze and report on risks, providing results to the partner team.
• Assist in onboarding and fine-tuning the digital monitoring tool, Vault JS.
• Develop baseline reporting and standard operating procedures (SOPs) for consistent monitoring and analysis activities.

ABOUT YOU:

• Your values:
  • Integrity: You believe in doing the right thing, even when it's uncomfortable, seemingly inefficient, or costly.
  • Purposefulness: You have a desire to serve others with your skillset and an openness to continuous learning and growth.
  • Ownership: You stick to your commitments, follow up with action, and seek clarity in communication & expectations.
• Your experience:
  • 1-3 years minimum experience in a GRC role.
  • Knowledge of Information Security best practices and standards (ISO 27001/27002, NIST, CIS, OWASP).
  • Understanding of US Privacy legislations (CCPA, CPRA, CTDPA, MHMD, etc.) and consumer protection laws.
  • Ability to work with cross-functional teams and possess strong analytical skills.
  • Experience in monitoring and analyzing cookies, trackers, and pixels.
  • Ability to learn new tools quickly and develop SOPs.
  • SQL experience is a plus.
  • Consulting experience is a plus.

WHAT WE OFFER:

• Competitive compensation with opportunities for additional incentives. The salary for this role is $110-170K/year
• Work/life balance – we know there’s more to life than work! We encourage our team to pursue other passions, get outside, and spend time with family. We work with clients and consultants to set expectations for a manageable workload.
• Opportunities to connect in person and remotely with a passionate, supportive team.

LOCATION:

Kalles Group is steadily growing our talent pool across the USA! We are currently able to hire in the following states: Arizona, California, Georgia, Illinois, Maryland, Michigan, Minnesota, North Carolina, Ohio, Oregon, and Washington. If you would like to request more information, please reach out to talent@kallesgroup.com.

HOW TO APPLY:

Please fill out the form below (including uploading your most recent resume) and we'll be in touch! We know imposter syndrome can be a barrier to many great applicants. We hope you'll still consider applying. That's why we've made the application process as short and simple as possible.

Even if you're not a fit for the role, you can expect to hear back from us! We want you to have the best experience as a candidate, so please feel free to share feedback at any stage of the process to talent@kallesgroup.com.

Kalles Group is an equal-opportunity employer and does not discriminate on the basis of creed, nationality, race, ethnicity, disability, gender, or other protected class.