Senior GRC Analyst

Company Overview

JB Poindexter (India) Private Limited is a subsidiary of J.B.

Poindexter & Co., Inc.

a privately held diversified manufacturing company forecasting $2.5B in annual revenue and 8,500 team members in 2025.

The eight operating subsidiaries, covering over 50 locations, are engaged in the production of commercial truck bodies, step-vans, utility trucks, funeral coaches, limousines, pickup truck bed enclosures, precision machining, and expandable foam plastic packaging.

For more information, visit www.jbpoindexter.com

JB Poindexter (India) Private Limited is the captive shared services unit of the J.B.

Poindexter & Co., Inc.

The company, wholly owned by J.

B.

Poindexter & Co., Inc.

& is headquartered in Houston, Texas, USA.

Duties:

As the Senior GRC Analyst, you will play a critical role in developing and implementing comprehensive governance, risk, and compliance strategies, policies, and controls to safeguard our organization's reputation and financial integrity.

Key Responsibilities:


* Develop and maintain the organization's GRC strategy, policies, and procedures to ensure alignment with regulatory requirements and industry best practices.


* Collaborate with cross-functional teams to establish a culture of compliance and risk awareness.


* Lead risk assessment processes to identify, assess, and prioritize potential risks and compliance challenges.


* Design and implement risk mitigation strategies, controls, and action plans to minimize potential threats to the organization.


* Help develop and annually test the organization's Business Continuity and Disaster Recovery Plans.


* Monitor changes in regulations, industry standards, and best practices to keep the organization up-to-date and compliant.


* Coordinate internal and external audits, ensuring timely resolution of audit findings.

Qualifications:


* Bachelor's degree in information technology, Cybersecurity, or related field.


* A minimum of 8-12 years of professional experience in governance, risk, and compliance.


* Industry-recognized certifications, such as CRISC, CISA, CISM, or CISSP, are highly desirable.


* Solid understanding of industry regulations, standards, and frameworks, to include NIST 800-171, SOC 2, ISO 27001, GDPR, CCPA, and PCI DSS compliance requirements, as well as the ability to interpret and implement them effectively.


* Exceptional communication, and interpersonal skills.


* Strong analytical and problem-solving abilities, along with a keen attention to detail.


* Demonstrated ability to build and maintain strong working relationships with internal and external stakeholders.


* Experience in creating and delivering compliance and ethics training programs.


* Strong proficiency in managing enterprise IT security risk, policies, and controls within Audit board.


* Ability to balance the need for compliance with a pragmatic and business-focused approach.

Code of Ethics:

JB Poi...