.svg)
The Brattle Group
Cybersecurity GRC (Governance, Risk & Compliance) Specialist
Join The Brattle Group in Boston as a Cybersecurity GRC Specialist. Leverage ServiceNow GRC skills to manage compliance, conduct risk assessments, and ensure regulatory alignment. Competitive salary and benefits offered.
Mid-Level
ServiceNow Role Type:
ServiceNow Modules:
Governance, Risk, and Compliance
ServiceNow Certifications (nice to have):
Job description
Posted on:
August 22, 2025
Brattle Group is seeking a Cybersecurity GRC (Governance, Risk & Compliance) Specialist to implement and manage the firm's framework. This role focuses on aligning policies and controls with regulations, conducting risk assessments, supporting compliance audits, and promoting accountability. The specialist will collaborate with various teams to ensure compliance with industry standards and mitigate risk.
Requirements
- Bachelor’s degree in Business, Law, Information Systems, or a related field
- 3–5 years of experience in GRC, internal audit, compliance, or risk management
- Familiarity with GRC platforms (e.g., ServiceNow GRC, Archer, LogicGate)
- Working knowledge of risk assessment methodologies and control frameworks
- Understanding of privacy laws and data protection requirements
- One or more certifications (e.g., CRISC, CISA, CIPP, CISSP, CISM)
- Experience conducting control testing and compliance audits
- Ability to interpret legal and regulatory texts into business requirements
Benefits
- Competitive benefits package
- Base salary
- Bonus program
Requirements Summary
Bachelor’s degree in related field; 3-5 years GRC, compliance, or risk management exp; familiarity w/risks & compliance frameworks. GRC platform (SNIP, Archer, etc.) experience required. Certifications like CRISC, CISA or CIPP are a plus
Apply now
Boston
|
Massachusetts
United States
Mid-Level
In-Person
Full Time
105000-115000 USD/year
