Sr. Information Security GRC Analyst
Not Disclosed•Full-TimeOn-site
location_on1731, Franklin Street, South Bend, Saint Joseph County, Indiana, 46613, United States
About the Role
Tire Rack is seeking a Senior Information Security GRC Analyst to support and advance our Information Security Governance, Risk, and Compliance (GRC) program. This position is pivotal in assessing and strengthening IT and security controls across the organization, ensuring alignment with regulatory, statutory, and industry security standards including ISO/IEC 27001:2022 and PCI DSS.
You will work closely with IT teams, business leaders, and audit stakeholders to identify risk exposures, strengthen control frameworks, and drive continuous improvement in Tire Rack's overall security posture. Success in this role requires a strong mix of technical understanding, risk assessment expertise, and the ability to translate complex compliance requirements into practical, business-aligned security controls.
At Tire Rack, we operate with the values of IOOGA — Integrity, Our People, Our Customers, Growth, and Attitude. This role offers the opportunity to embed governance and compliance practices directly into technology projects and security initiatives, fostering a culture of security maturity and resilience.
Location & Schedule
This is a full-time, on-site position based at our Tire Rack headquarters in South Bend, IN. The standard work schedule is Monday through Friday, 8:00 a.m. – 5:00 p.m. Occasional weekends or additional hours may be required depending on project timelines or audit needs.
Work location
Work model: On-site
1731, Franklin Street, South Bend, Saint Joseph County, Indiana, 46613, United States
South Bend, Indiana
Key Responsibilities
- check_circleAdvise stakeholders on governance, risk, and compliance requirements by interpreting regulatory standards
- check_circleLead the information security risk management program including risk identification and mitigation monitoring
- check_circleCoordinate internal and external audits including evidence collection and remediation tracking
- check_circleManage compliance findings, corrective actions, and risk acceptance documentation
- check_circleEmbed governance and compliance practices into security initiatives and technology projects
- check_circleTrack program metrics and audit results to improve security maturity over time
- check_circleExecute security control testing by defining scope, validating evidence, and documenting results
- check_circleDevelop and maintain GRC documentation such as security policies, risk registers, and control inventories
Requirements
- verified5–7 years of experience in IT, cybersecurity, risk management, audit, or compliance roles
- verifiedBachelor's Degree in Information Systems, Information Technology, Cybersecurity, Risk Management, or a related field
- verifiedCISA, CRISC, CISSP, CISM, CompTIA Security+, or equivalent certification
- verifiedStrong knowledge of ISO/IEC 27001 and PCI DSS
- verifiedFamiliarity with GDPR concepts
Nice to Have
Familiarity with GDPR concepts.
Similar Job Opportunities
Skills, education and keywords
Skills: Iso/iec 27001, Pci DSS, GDPR, Cisa, Crisc, Cissp, Cism, Comp Tia Security+.
Education: Bachelor's Degree in Information Systems, IT, Cybersecurity, Risk Management, or related field required.
Frequently asked questions about Sr. Information Security GRC Analyst at Discount Tire
What does a Sr. Information Security GRC Analyst at Discount Tire do?expand_more
Day-to-day, the Sr. Information Security GRC Analyst at Discount Tire will advise stakeholders on governance, risk, and compliance requirements by interpreting regulatory standards; lead the information security risk management program including risk identification and mitigation monitoring; coordinate internal and external audits including evidence collection and remediation tracking; and manage compliance findings, corrective actions, and risk acceptance documentation.
What are the requirements for this Sr. Information Security GRC Analyst role?expand_more
Discount Tire is looking for candidates who meet the following requirements: 5–7 years of experience in IT, cybersecurity, risk management, audit, or compliance roles; Bachelor's Degree in Information Systems, Information Technology, Cybersecurity, Risk Management, or a related field; CISA, CRISC, CISSP, CISM, CompTIA Security+, or equivalent certification; Strong knowledge of ISO/IEC 27001 and PCI DSS; and Familiarity with GDPR concepts.
Where is the Sr. Information Security GRC Analyst role at Discount Tire located?expand_more
Sr. Information Security GRC Analyst at Discount Tire is based in 1731, Franklin Street, South Bend, Saint Joseph County, Indiana, 46613, United States. This is a on-site role.
Is this Sr. Information Security GRC Analyst job remote, hybrid, or on-site?expand_more
Discount Tire has listed this Sr. Information Security GRC Analyst role as on-site.
How much experience is required for this Sr. Information Security GRC Analyst role?expand_more
Sr. Information Security GRC Analyst at Discount Tire typically requires 5–7 years of relevant experience at the senior level.
What skills do you need for the Sr. Information Security GRC Analyst role at Discount Tire?expand_more
Key skills for Sr. Information Security GRC Analyst at Discount Tire include Iso/iec 27001; Pci DSS; GDPR; Cisa; Crisc; Cissp; Cism; and Comp Tia Security+.
What education is required for Sr. Information Security GRC Analyst at Discount Tire?expand_more
Educational requirements for this role: Bachelor's Degree in Information Systems, IT, Cybersecurity, Risk Management, or related field required.
What category does the Sr. Information Security GRC Analyst role belong to?expand_more
Sr. Information Security GRC Analyst at Discount Tire is part of the it job category on Recrutus.