About CareerTakesCareerTakes is a next-generation AI recruiting platform that connects early-career talent with real roles at established companies across regulated industries.
👉 Important disclosure: CareerTakes is a third-party recruiting platform supporting this hiring process. If selected, you will be employed directly by our client, a Fortune 300–level organization in the financial services and mortgage industry.
About the ClientOur client is a well-established, highly regulated financial services organization with a strong reputation for integrity, responsibility, and internal growth. They operate a full-service mortgage business offering forward and reverse mortgage products, refinancing, and specialty loan solutions nationwide.
The company emphasizes:
- Promotion from within
- Strong mentorship and leadership development
- Accountability, quality, and ethical decision-making
- Long-term career growth in regulated environments
Role SummaryThis is a true entry-level Junior Risk Analyst role designed for candidates intentionally pursuing a career in Governance, Risk, and Compliance (GRC) within cybersecurity.
While little to no prior professional experience is required, candidates must demonstrate foundational GRC knowledge through education, internships, certifications, or active pursuit of relevant credentials.
You’ll work closely with an experienced Lead Risk Analyst and report to the Cybersecurity Manager, gaining hands-on exposure to real-world risk investigations, audits, compliance activities, third-party risk, and documentation in a highly regulated environment.
⚠️ This is not a Security Operations (SecOps) role and not a passive “check-the-box” compliance position. Success requires ownership, critical thinking, and accountability.
Core ResponsibilitiesRisk Investigations & Case Management
- Assist with insider risk investigations under defined processes and supervision
- Work assigned risk tickets through completion with oversight
- Maintain accurate, defensible documentation of findings and actions
- Validate evidence prior to escalation or closure
eDiscovery & Legal / HR Support
- Support eDiscovery requests from Legal and HR
- Assist with data identification, evidence handling, and response tracking
- Ensure requests are completed accurately and on time
GRC, Audits & Compliance
- Support internal and external audits and risk assessments
- Assist with PCI compliance activities and annual self-certification
- Help complete vendor due diligence questionnaires (DDQs)
- Maintain risk registers, control inventories, and supporting artifacts
Projects & Initiatives
- Support GRC and risk-related projects led by the Lead Risk Analyst and Cybersecurity Manager
- Track assigned tasks to completion with high accuracy and documentation
- Take increasing ownership of defined project workstreams over time
Metrics, Reporting & Documentation
- Assist with KPI and KRI data collection and validation
- Support preparation of leadership-facing risk and compliance reporting
- Develop and improve process documentation to remain audit-ready
Collaboration & Professional Development
- Participate in weekly team meetings and working sessions
- Communicate clearly and professionally with internal stakeholders
- Actively pursue skill development and long-term growth in GRC
- Work toward advanced certifications such as GRC Professional (GRCP)
Expectations & Working StyleSuccessful candidates will:
- Take pride in accuracy, judgment, and follow-through
- Validate findings before acting or escalating
- Think critically and avoid assumptions
- Learn independently while leveraging mentorship
- Communicate clearly, concisely, and professionally
This role is not suited for candidates who dislike structure, accountability, or being evaluated on outcomes.
Education & ExperienceMinimum Requirements
- Basic understanding of information security frameworks and GRC concepts
- One year or less of relevant professional experience
- (or equivalent academic exposure)
- Genuine interest in a long-term career in cybersecurity risk and GRC
Nice to Have
- Bachelor’s degree in a relevant discipline
- Entry-level GRC, risk, or compliance certifications
- Familiarity with frameworks such as NIST, ISO, FFIEC
- Strong curiosity, work ethic, and critical thinking skills
Education alone does not determine success — ownership, judgment, and willingness to learn matter just as much.
Compensation & Benefits- Base Salary: $55,000 – $65,000
- Bonus: 3–5% performance-based
- Comprehensive benefits package including:
- Medical, dental, and vision coverage
- 401(k) with generous employer match
- Paid vacation and sick time
- 9 paid holidays + 1 floating cultural celebration day
- Paid parental leave
- Company-paid life insurance
- Optional benefits (FSA, pet insurance, additional life coverage)
- Free legal services
- Employee loan program
Equal Opportunity StatementCareerTakes and our client are Equal Opportunity Employers and comply with all applicable federal, state, and local employment laws. Qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other protected characteristic.
Reasonable accommodations are available upon request.
