-
Sr. Governance Risk Compliance & Audit Analyst…
- SitusAMC (Dover, DE)
-
SitusAMC is where the best and most passionate people come to transform our client’s businesses and their own careers. Whether you’re a real estate veteran, a passionate technologist, or looking to get your start, join us as we work together to realize opportunities for everyone, we proudly serve.
At SitusAMC, we are looking to match your unique experience with one of our amazing careers, so that we can help you realize your potential and career growth within the Real Estate Industry. If you are someone who can be yourself, advocate for others, stay nimble, dream big, own every outcome, and think global but act local – come join our team!
The Governance, Risk, Compliance, and Audit Senior Associate will be a key member of the Chief Information Security Officer’s (CISO) organization, working closely with other security team members and partnering directly with business leaders to strengthen SitusAMC’s overall cybersecurity posture. This role is responsible for applying the IT risk management frameworks to help meet compliance benchmarks, address regulatory requirements, and achieve strategic security objectives. By leveraging expertise in governance, risk, compliance, and audit, the Senior Associate will proactively evaluate the enterprise threat landscape, ensuring that risks are identified, documented, and managed effectively.
In addition to operational responsibilities, this role will support governance, risk, compliance, and audit functions by conducting risk assessments, leading gap analyses, and producing actionable reports. The Senior Associate will play a critical part in both day-to-day security operations and long-term initiatives, driving continuous improvement and serving as a trusted partner for both technical and business stakeholders. The Governance, Risk, Compliance, and Audit Senior Associate will also provide support to business continuity planning and disaster recovery compliance, data loss prevention, third party risk management and incident response activities.
Essential Job Functions:
+ Monitoring and investigative activities related to cybersecurity risks, threats, and opportunities.
+ Identifying, analyzing, and recommending mitigation strategies for reported incidents by assessing risks across Strategic, Business, Operational, and Technical domains.
+ Partner in developing and maintaining operational policies, standards, playbooks, guidelines, and procedures to enhance cybersecurity practices.
+ Support the implementation of technical platforms and process improvements that strengthen SitusAMC’s cybersecurity posture.
+ Perform compliance gap analyses and prepare reports to highlight risks and recommend remediation steps.
+ Participate in internal cybersecurity projects that enhance organizational resilience.
+ Collaborate with team members on incident response and use case development, contributing to knowledge sharing and skill growth.
+ Work effectively within a fast-paced, dynamic, and flexible team environment, demonstrating adaptability and commitment to team goals.
+ Support evaluation and execution of Third-Party Risk Management (TPRM) activities.
+ Assist with the administration, monitoring, and reporting of assigned technology platforms to support continuous improvement and optimization.
+ Other activities as may be assigned by your manager
Qualifications/ Requirements:
+ Bachelors degree in related field or equivalent combination of education and experience
+ 5+ years of industry and/or relevant experience, typically with 1+ years in an Associate level role or external equivalent.
+ 4+ years in Governance, Risk, Compliance, Audit, or Cybersecurity roles.
+ Have at least one certification (e.g., CISSP, CISM, CISA, CRISC, CCSP, or equivalent).
+ Experience applying risk management frameworks to support the identification and tracking of risks and risk action items.
+ Demonstrated ability to assist with risk assessments, support compliance gap analyses, and contribute to remediation planning.
+ Hands-on proficiency with Information Security tools and products related to attack surface management, email security, data security posture management, and data loss prevention.
+ Practical experience supporting Third-Party Risk Management (TPRM) activities and vendor assessments.
+ Working knowledge of incident investigation techniques and contributing to incident response activities.
+ Ability to craft policies, identify compliance issues, and create risks for tracking.
+ Broad understanding of cybersecurity principles and network security.
+ Knowledge of various endpoints and operating systems (Mac, Windows, Linux).
+ Familiarity with cloud security best practices (AWS and Azure,).
+ Ability to create, track, improve, and report on Key Risk Indicators (KRIs).
+ Solid Understanding of regulatory requirements and frameworks (e.g., GDPR, CCPA, PCI, SOX, GLBA, NIST).
+ Basic Understand how compliance with laws and regulations influences security strategy.
+ Strong analytical, problem-solving, and interpersonal skills.
+ Excellent communication, documentation, and stakeholder management skills.
+ Ability to produce reports, dashboards, and technical documentation.
\#LI-AS1 #LI-Remote
Note: This job description is not intended to be all inclusive or exclusive. At any time, employees may perform other related duties as required to meet the ongoing needs of the organization and participate in additional trainings. SitusAMC does not accept unsolicited resumes from staffing agencies, search firms or any third parties. Any unsolicited resume submitted to SitusAMC in any manner will be considered SitusAMC property, and SitusAMC will not pay a fee for any placement resulting from the receipt of an unsolicited resume.
The annual full time base salary range for this role is
$95,000.00 - $120,000.00
Specific compensation is determined through interviews and a review of relevant education, experience, training, skills, geographic location and alignment with market data. Additionally, certain positions may be eligible to receive a discretionary bonus as determined by bonus program guidelines, position eligibility and SitusAMC Senior Management approval. SitusAMC offers PTO and paid holidays, the terms of which are set forth in the program policies. All full time employees also are eligible to participate in various benefit plans, including medical, dental, vision, life, disability insurance and 401K; in each case in accordance with the terms of the applicable plans.
Pay Transparency Nondiscrimination Provision (https://go.situsamc.com/rs/962-QMP-613/images/pay-transp\_%20English\_formattedESQA508c.pdf?version=0)
SitusAMC is an Equal Opportunity Employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, disability, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local laws.
Know Your Rights, Workplace Discrimination is Illegal (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf)
-
Recent Jobs
-
Sr. Governance Risk Compliance & Audit Analyst -Technology - Remote
- SitusAMC (Dover, DE)
-
Penn Medicine Clinician (General Internal Medicine)
- University of Pennsylvania (Philadelphia, PA)
-
UX Engineer
- Insight Global (Kansas City, MO)
-
Senior Construction Project Manager (Anticipated Opening)
- Turner & Townsend (Kennewick, WA)