Governance, Risk, and Compliance Analyst

Position Overview

The Governance, Risk and Compliance (GRC) Audit and Continuous Monitoring Analyst will provide technical knowledge over the Kiewit Information Technology governance, risk and compliance program. They will lead the identification of, and respond to, organizational information security risks and/or concerns, and develop, implement, and documents improvement to correct deficiencies and mitigate risk. 

This position works closely with the operational, technical, and corporate function personnel to foster a technology risk management culture, challenge assumptions and to assist in communicating a holistic risk profile of technology risk to Executive management and various stakeholders. This position will be part of the team responsible for establishing and maintaining an enterprise Information Security Governance, Risk and Compliance vision, strategy and program. 

District Overview

Kiewit Technology Group (KTG) builds solutions to enable and support a $12.5 billion company. Our mission is to deliver project schedule and cost certainty by employing technology designed by and for the construction industry. Our team deploys technology solutions to the field and home office departments that increase profitability by maximizing the way we use our people and resources in daily operations. KTG uses systems and tools that manage every part of Kiewit’s business and lifecycle of a project to improve planning and day-to-day execution in the field by giving our people real-time data to make faster, smarter decisions. When you join KTG, you will make an impact on the critical work we do every day.

Location

This position is based in Kiewit's La Vista, NE office.

Responsibilities

• Assist in the development, implementation, and maintenance of GRC policies, procedures, and frameworks.
• Assist with performing risk assessments to identify potential risks and vulnerabilities within the organization.
• Monitor and report on compliance with regulatory requirements and internal policies.
• Support internal and external audits by gathering and organizing relevant documentation.
• Collaborate with various departments to ensure compliance with industry standards and best practices.
• Assist in the development and delivery of GRC training programs for employees.
• Stay up-to-date with changes in regulations and industry trends to ensure the organization's compliance efforts are current and effective.
• Maintain reliability in meeting work commitments, contributing to the team’s productivity and overall success.

Qualifications

Non-Technical Skills:
• Strong analytical and problem-solving skills.
• Excellent written and verbal communication skills.
• Attention to detail and ability to work independently.
• Basic understanding of governance, risk management, and compliance principles.
• Ability to work collaboratively in a team environment.

Technical Skills:
• Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint).
• Experience with Power BI preferred.
• Ability to independently research and troubleshoot a technical issue in a variety of applications.
• Have working knowledge of IT Networking and terminology.

Preferred Qualifications:
• Internship or prior experience in a GRC-related role.
• Familiarity with GRC tools and software. (e.g., Whistic or other Third-Party Management, ZenGRC or similar GRC platforms)
• Knowledge of relevant regulations and standards (e.g., ISO 27001, SOC 2 Type II).