Security Governance Analyst II

As a Security Governance Analyst II, you will play a crucial role in our governance, risk, and compliance efforts. You will be interfacing with partner teams, conducting security awareness and role-specific training, monitoring controls for drift, and creating actionable security metrics. Your proactive approach to identifying and addressing security risks, along with your ability to collaborate with cross-functional teams, will be key to our success. This role offers you the opportunity to grow into more advanced positions within our organization.

Ready to get in the driver’s seat? Join us!

What you’ll do

• Manage GRC related tickets, including tracking, responding, and closing them.
• Develop and update security policies, ensuring they align with organizational goals and regulatory requirements.
• Track and measure adherence to governance frameworks across the organization.
• Act as a liaison between technical teams and business units for governance-related initiatives.
• Lead the execution of established security procedures and ensure efficient operations of security tools.
• Analyze and report on security metrics to identify trends and areas for improvement.
• Triage and resolve security issues related to vendors, systems, and users.
• Build and maintain procedural documentation and knowledge bases for common security processes.
• Operate the security training program, including secure data handling, role specific training, acceptable use, and other relevant topics.
• Collaborate with IT and business units to address operational, contractual, and technical vendor-related issues.

This Might Describe You

• You are a team player. You leave your ego at the door and don’t mind going out of your lane to lend a hand sometimes. When the team wins, you win.
• You are curious and approach problems with a learner’s mindset. You ask tough questions and try to bring a solution.
• You are comfortable with the unfamiliar and embrace the stretch of learning and doing things you have never done before.
• You have 3+ year's experience in cybersecurity or a GRC role and want to work for a truly great company with room to grow.
• You have a strong understanding of risk assessments, compliance standards like ISO 27001, and controls lifecycle management.
• You have a strong background in IT, Audit, or another technical field and are ready to break into a security role.
• You enjoy improving processes and identifying gaps in security operations.
• You have a natural ability to prioritize tasks and work independently with minimal supervision.
• You’re confident in engaging with cross-functional teams to address risks and compliance requirements.
• You can explain technical details to non-technical stakeholders without using jargon.
• You have an eye for detail, can speak legalese, or have experience with technical writing.
• You are motivated by opportunities to refine your skills and expand your professional knowledge.

Other things to note 

• This role can be worked from any U.S. remote location. 
• Familiarity with public company requirements, including Sarbanes Oxley and key regulations, if applicable. For SOX compliant roles, responsible for designing, executing, and documenting internal controls where they have been identified as owners to prevent errors in financial reporting, processes, and business operations. Including attestation to the completeness, accuracy, and compliance of all financial reporting data, where applicable. 

Say hello to Hagerty 

Hagerty is an automotive enthusiast brand and the world’s largest membership organization. Along with being a best-in-class provider of specialty insurance for enthusiasts, Hagerty is also home to the Hagerty Drivers Foundation, Garage + Social, Hagerty Drivers Club, Marketplace and so much more. Committed to saving driving for future generations, each and every thing Hagerty does is dedicated to the love of the automobile. 

Hagerty is a rapidly growing company that values a winning culture. We provide meaningful work for and invest in every single team member. 

At Hagerty, we share the road. We are an inclusive automotive community where all are welcomed, valued and belong regardless of race, gender, age, or car preference.  We are united by our shared passion for driving, our commitment to preserve car culture for future generations and our desire to make a positive impact in the world. 

If you reside in the following jurisdictions: California, Colorado, District of Columbia, Hawaii, Illinois, Maryland, Minnesota, Nevada, New York, New Jersey, Ohio, Rhode Island, Vermont, Washington, or Canada please email recruiting@hagerty.com for compensation, comprehensive benefits and the perks that set us apart.  

#LI-Remote  

US Benefits Overview

Canada Benefits Overview

UK Benefits Overview

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!