Role description
Job Description - GRC Analyst
We are seeking a GRC Analyst to support the rollout, configuration, and ongoing optimization of our GRC platform, as well as contribute to key governance activities such as policy management and security training initiatives. This role will focus on testing workflows, assisting with module implementation, coordinating with business and technical teams, and helping operationalize our GRC processes within the platform. The analyst will also support policy review cycles, training campaign execution, and related awareness efforts.
The ideal candidate is detail oriented, organized, and comfortable collaborating with the GRC team and cross functional departments.
Key Responsibilities
GRC Platform Implementation & Support
- Assist with the configuration, setup, and deployment of OneTrust GRC modules (e.g., Policies, Risk, Issues, Third Party).
- Perform testing of workflows, forms, assessments, approvals, notifications, and integrations to ensure they meet business requirements.
- Support data migration efforts, including policies, records, and historical information.
- Help create and maintain platform job aids, process guides, and end user documentation.
Respond to user questions and support the GRC team post launch.
Cross Functional Collaboration
- Work closely with Information Security, Compliance, and department owners to gather requirements and ensure GRC workflows reflect real world processes.
- Track action items, follow up with partners, and ensure timely input for platform configuration decisions and policy updates.
- Communicate updates, risks, and next steps to stakeholders.
Policy Management Support
- Assist with organizing, formatting, and managing policy documents and data within OneTrust.
- Help coordinate policy reviews, versioning, comment cycles, and approvals.
- Maintain clean and consistent policy inventory structure within the library/module.
Assist with annual policy and standard reviews, including coordinating feedback and updates.
Training & Awareness Support
Monitor completion progress for training campaigns and follow up with departments as needed.
Generate and share training completion reports using Adaptive to track campaign performance.
Assist with phishing simulation campaigns, including scheduling, monitoring results, and preparing summary reports.
Documentation & Process Support
Create and maintain resource documents for new OneTrust processes.
Document workflows, configuration decisions, and data structures for future reference.
Maintain project trackers, timelines, and configuration logs.
Support policy management activities by coordinating annual policy and standard reviews, gathering stakeholder feedback, and assisting with updates and version control.
Minimum Qualifications
- Bachelor s degree in Cybersecurity, Information Systems, Business, or related field; or equivalent experience.
- Strong analytical skills and attention to detail.
- Comfortable working in systems and learning new platforms quickly.
- Strong writing and communication skills.
- Ability to collaborate with both technical and non technical teams.
Preferred Qualifications
- Nice-to-haves, not required
- Exposure to OneTrust, Hyperproof, or other GRC platforms.
- Experience with policy management or training programs.
- Basic familiarity with governance, risk, or security concepts.
Skills
information security,policy management,security training,workflow testing,data migration,compliance,training campaign execution,
About UST
UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.
