HC
Solutions
About the Role
ROLE OVERVIEW
We are looking for a detail-oriented and knowledgeable GRC Security Analyst to join our Governance, Risk & Compliance team. This role is central to managing regulatory compliance, security governance, and risk management activities across the enterprise. The successful candidate will play a key role in driving and maintaining security and compliance frameworks, managing audit processes, and ensuring data protection and security controls are enforced across Pinnacle’s systems, including cloud, on-prem, and user-facing platforms.
Additionally, the GRC Security Analyst will be responsible for coordinating and facilitating maintenance window activities to support continuous IT infrastructure improvements.
KEY RESPONSIBILITIES
Governance, Risk & Compliance
- Perform ongoing risk assessments and maintain a risk register.
- Conduct internal compliance audits and prepare for external assessments (ISO 27001, PCI DSS, GDPR).
- Implement and manage Microsoft Purview policies
- Develop and enforce security governance frameworks and policies.
- Support user access reviews and IAM compliance enforcement.
- Track remediation of audit findings and compliance gaps.
- Maintain compliance with data protection and privacy standards.
Downtime and Maintenance Coordination
- Schedule and coordinate maintenance window meetings with IT and security stakeholders.
- Ensure all system changes and downtimes are logged, reviewed for impact, and comply with change management policies.
- Document, track, and report on the outcomes of change-related meetings.
- Manage communication within organization and with external partners
Collaboration & Support
- Liaise with the Security Engineering and SOC teams to validate control implementation.
- Support training and awareness programs on security governance and user responsibilities.
- Assist in the preparation and delivery of reports for senior management and auditors.
Requirements
Technical Skills & Experience
5+ years of experience in security governance, risk, and compliance roles.
Strong knowledge of ISO 27001, PCI DSS, GDPR, NIST, or similar frameworks.
Experience coordinating audits, managing compliance tools, and writing policies.
Familiarity with IAM, access control policies, and endpoint security compliance.
3 + years of Experience in tracking and managing technical change controls.
3+ years of experience with forensic tools (e.g., Wireshark, Volatility, FTK).
1+ year of experience in implementing and managing Microsoft Purview
Strong Understanding of web security risks and mitigation strategies.
Certifications
Mandatory:
Microsoft Certified: Information Security Administrator Associate (SC-401).
Preferred:
ISO/IEC 27001 Lead Implementer
Certified Information Systems Auditor (CISA)
Certified Information Systems Security Professional (CISSP)
Certified Risk and Information Systems Control (CRISC)
AWS Certified Security – Specialty
Nice-to-Have Skills
Microsoft Certified: Information Protection Administrator Associate (SC-400)
Understanding of cloud security compliance in Azure and AWS.
Strong documentation, project coordination, and reporting skills.
Work Environment & Expectations
Embedded within the Governance, Risk & Compliance team and collaborating cross-functionally with IT, Security Operations, and Engineering teams.
About the Company
ABOUT US:
We are a dynamic and innovative online gaming company, established in 1998 and recognized worldwide for delivering cutting-edge sportsbook and gaming experiences that captivate millions of sports enthusiasts. Fueled by passion, creativity, and technology, our team continuously pushes boundaries to redefine the future of sports betting — offering players around the globe unmatched excitement and entertainment.
WHAT WE OFFER:
💼 B2B Contractor Agreement – enjoy flexibility and independence
🌍 Fully Remote – work from Serbia
⏰ Full-Time Engagement – 10:00 AM – 6:00 PM CET
🌴 15 Days of Paid Time Off
💰 Competitive Compensation – rewarding your experience and impact
🚀 Innovative Environment – collaborate with experts passionate about sports, data, and technology
🎯 Growth Opportunities – be part of a global team shaping the future of online gaming
🌍 International Collaboration – work closely with North American teams and explore potential travel to North America
🌱 Career Growth – thrive in a rapidly expanding European technology center
RECRUITMENT PROCESS:
1. Online Technical Assessment – Upon application, you’ll receive a link to complete a technical test. Candidates scoring 60% or higher will move to the next stage.
2. HR Interview – Get to know us and share your story.
3. Technical Interview – Demonstrate your skills and expertise with our team.