Overview

Senior Security Compliance GRC Analyst

Location: India Work Arrangement: Remote

About the Role

The Senior Security Compliance GRC Analyst leads complex audits and regulatory assessments, providing subject matter expertise in frameworks such as SOC 2, ISO 27001, FedRAMP, ENS, and Cyber Essentials. This role improves control design, harmonizes evidence practices, and guides corrective action plans — while mentoring junior analysts and partnering with cross-functional teams to mature the organization's compliance posture and reduce recurring audit gaps through regular external audit integration.

Your Role Responsibilities? Here's What You'll Do.

• Lead complex internal and external audits, coordinating cross-functional participation and ensuring timely, accurate evidence delivery; serve as a subject matter expert on one or more compliance frameworks including SOC 2, ISO 27001, HIPAA, FedRAMP, and PCI.
• Design and execute control testing plans, evaluating control effectiveness and documenting observations or gaps; drive remediation workflows by partnering with system owners to define action plans and confirm closure.
• Develop and maintain compliance documentation including system security plans, control narratives, and audit-ready evidence libraries; prepare and maintain comprehensive records of compliance activities including risk assessments, audit reports, and regulatory filings.
• Support harmonization of control frameworks by mapping controls and evidence across multiple regulations and standards; identify process and control improvement opportunities, recommending updates that enhance efficiency and reduce audit friction.
• Project manage compliance audits including evidence collection and gap analysis; mentor junior analysts in audit readiness, evidence preparation, and control testing methodologies.
• Mentor, coach, train, and provide feedback to other team members; may provide feedback to leadership on the technical abilities of the team.

Role Essentials

You'll need to have:

• Bachelor's degree or equivalent work experience, with 3–5 years of experience in compliance, risk management, internal audit, or regulatory affairs.
• Knowledge of regulatory frameworks such as SOC, ISO 27001, NIST 800-53, FedRAMP, SOX, HIPAA, GDPR, or FAR/DFARS.
• Strong data gathering, interviewing, analytical, and problem-solving skills; strong knowledge of security risk assessment techniques, risk scoring models, and risk impact analysis.
• Strong oral and written communication skills with a professional demeanor; strong facilitation, project management, and interpersonal skills with the ability to maintain professionalism across all levels of the organization.
• Strong collaboration skills applied successfully within a team and across all levels of employees; demonstrated ability to influence, motivate, and mobilize team members and business partners.

What We'd Like to See

Extra credit if you have:

• Experience in a government-regulated industry such as healthcare, finance, defense, or technology.
• Cloud security and/or AI GRC certifications.
• Strong data analysis knowledge using tools such as Excel, SQL, or statistical software packages.
• Strong knowledge of Microsoft Operating Systems, products, and advanced Microsoft Excel skills.
• Self-motivated with the ability to manage projects to completion with minimal oversight in a fast-paced, deadline-driven environment; strong attention to detail with the ability to handle sensitive information with discretion and tact.

About Hyland

Hyland is the pioneer of the Content Innovation Cloud™, delivering ubiquitous enterprise intelligence to organizations with solutions that unlock actionable insights and drive automation.

Trusted by thousands of organizations worldwide, including many of the Fortune 100, Hyland's solutions create the foundation for a connected, agentic enterprise, where teams harness the power of AI to redefine how they operate and engage with those they serve. For additional information on Hyland's platform and services, please visit Hyland.com.

© Hyland. All rights reserved.

#HylandLife

Since 1991, it has been Hyland's mission to help our employees, customers and partners exceed their potential with our industry-leading content services platform. Our employees exude a contagious energy and are passionate about what they do – whether it's helping customers succeed, raising up their fellow Hylanders, or engaging in the communities where they live and work.

The #HylandLife hashtag encompasses our employee-centric culture. Our employees live our culture day in and day out by bringing their best self to work. Hyland supports them to do just that through career development resources, wellbeing programs and innovation practices. We thrive on diverse viewpoints and new ideas and believe that a positive, inclusive workplace is imperative to sustainable success.

As we've grown to a company of nearly 4,000 strong, we have the opportunity to make a significant impact on our communities. We strongly support employee initiatives and align our giving campaigns and programs to organizations that are important to them.

Equal Opportunity Statement

Hyland is an equal opportunity employer. We value diversity and are committed to providing an inclusive workplace for all employees and applicants. Employment decisions are made without regard to any characteristic protected by applicable laws and regulations. Information collected during the hiring process is used solely to assess qualifications, verify identity, and comply with legal requirements