IT GRC Analyst (Cyber Contract Management)

NBCUniversal is seeking an experienced Governance, Risk, and Compliance (GRC) Analyst to support various functions within the Security Assurance – Governance team. The ideal candidate will have a strong understanding of cybersecurity, vendor contracts, negotiation of third party security standards, and the ability support additional governance functions like 3rd Party Security Reviews. Responsibilities: Collaborate with business leadership, Legal, Procurement, and Cyber to review terms and conditions, ensuring vendor and client obligations are aligned with internal cyber controls Undertake research as needed when control or regulatory questions arise Track status of risk remediations in the risk register with business stakeholders Monitor completeness and sustainability of remediation efforts Educate and raise awareness on risks and controls Contribute to overall program enhancements and drive automation with various IT and Cybersecurity stakeholders Contribute to enterprise IT Risk and Control awareness efforts Maintain deep understanding of organization wide objectives, interactions, issues and risks Stay abreast of current and emerging information risks, including current or proposed cyber legislation or control frameworks Perform other related duties and special projects, as assigned, to support evolving GRC and cybersecurity program needs