CrawlJobs Logo

Governance, Risk, & Compliance Specialist

United States, Charlotte · Job Posted June 29, 2026
Apply Position
Job Link Share

Job Description

Beacon Hill is now hiring for a fully-remote GRC specialist who has experience working in the energy sector. This is a contract to hire position with occasional travel.

Job Responsibility

  • Support governance, risk, and compliance initiatives across the organization
  • Maintain security documentation, policies, and compliance records
  • Coordinate audit activities and compliance evidence collection
  • Track remediation efforts, audit findings, exceptions, and risk treatment plans
  • Conduct control testing, risk assessments, and vendor reviews
  • Assist with mapping controls to security and compliance frameworks
  • Maintain risk registers, control inventories, and compliance reporting
  • Partner with internal stakeholders to support security and regulatory requirements
  • Monitor compliance trends and contribute to continuous improvement of the security program

Requirements

  • 3+ years of experience in GRC, cybersecurity compliance, IT audit, information security, or related areas
  • Knowledge of frameworks including NIST, ISO 27001, SOC 2, and CIS Controls
  • Experience supporting audits, control testing, evidence collection, and remediation activities
  • Ability to develop and maintain security policies, standards, and procedures
  • Experience with risk assessments, compliance reviews, and vendor risk management
  • Strong documentation, organizational, and communication skills
  • Experience collaborating with IT, Security, Engineering, Legal, Compliance, and other business teams
  • Working knowledge of cloud security, identity and access management, vulnerability management, and incident response

Nice to have

  • Experience in regulated or critical infrastructure industries
  • Relevant certifications such as CISA, CISM, CISSP, CRISC, Security+, or ISO 27001
  • Experience with GRC platforms including ServiceNow GRC, Archer, OneTrust, AuditBoard, LogicGate, Drata, or Vanta
  • Familiarity with privacy, data protection, and third-party risk management programs
  • Experience creating compliance reporting, risk dashboards, and executive-level presentations

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Governance, Risk, & Compliance Specialist

8 matching positions

Information Security Governance, Risk and Compliance Specialist

The Information Security Governance, Risk and Compliance (GRC) Specialist is a s...
Location
Location
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field
  • Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred
  • Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP desirable
  • Seasoned experience in information security or related roles
  • Seasoned exposure to risk assessment, compliance, security awareness, or policy development is beneficial
  • Seasoned familiarity with information security frameworks and standards
  • Seasoned understanding of risk assessment methodologies, compliance, and policy development
  • Strong communication and interpersonal skills for effective collaboration
  • Strong attention to detail and ability to follow established processes
  • Seasoned project management skills for coordinating security initiatives
Job Responsibility
Job Responsibility
  • Assists in conducting risk assessments and vulnerability assessments
  • Contributes to the development and maintenance of security policies and procedures
  • Collaborates with internal stakeholders to ensure compliance with industry standards and regulations
  • Participates in security awareness and training initiatives
  • Supports incident response activities and investigations as required
  • Monitors and reports on security compliance metrics
  • Assists in the implementation of security controls and best practices
  • Stays updated with emerging security threats and trends
  • Performs any other related task as required
  • Fulltime
Read More
Arrow Right

Senior Information Security Governance, Risk and Compliance Specialist

The Senior Information Security Governance, Risk and Compliance (GRC) Specialist...
Location
Location
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree or equivalent in Information Technology or Computer Science degree or related field
  • Security certifications such as CISA, CRISC, COBIT, IIA or equivalent preferred
  • Certifications such as Lead audit/Implementer - ISO 27001, SOC TSP preferred
  • Advanced experience in information security, including GRC-related roles
  • Advanced experience in leading risk assessments, compliance efforts, security awareness initiatives, and policy management
  • Advanced understanding of information security frameworks and standards
  • Advanced proficiency in conducting risk assessments, analyzing security controls, and policy management
  • Excellent communication and interpersonal skills for collaborating with various stakeholders
  • Strong project management skills for handling security initiatives
  • Advanced familiarity with legal and compliance aspects related to information security
Job Responsibility
Job Responsibility
  • Leads risk assessments and gap analyses to identify vulnerabilities and recommends risk mitigation strategies
  • Develops and maintains security policies, standards, and procedures
  • Collaborates with legal and compliance teams to ensure adherence to regulatory requirements
  • Provides guidance and support to junior GRC team members
  • Assists in the creation and delivery of security awareness and training programs
  • Participates in security incident response activities as needed
  • Contributes to the continuous improvement of the information security program
  • Assists in policy management and refinement
  • Performs any other related task as required
  • Fulltime
Read More
Arrow Right

Supplier Risk & Compliance Specialist

We are looking for a Senior Procurement Specialist to play a key role in strengt...
Location
Location
Spain , Madrid
Salary
Salary:
Not provided
https://feverup.com/fe Logo
Fever
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Business, Engineering, or equivalent experience
  • 3+ years of procurement experience
  • Excellent written and verbal communication skills in English and Spanish
  • Strong organizational and analytical skills
  • Preferred experience in reviewing vendor contracts, including MSAs, SOWs, NDAs, etc.
Job Responsibility
Job Responsibility
  • Support the implementation of Fever's Supplier Risk & Compliance framework, assessing financial, operational, and compliance risks across suppliers
  • Partner with Trust & Safety, Legal, Privacy, and Finance to ensure supplier due diligence and contract compliance
  • Contribute to the implementation, rollout, and governance of procurement tools (e.g. ZIP / Source-to-Pay platforms), including workflows, controls, and data quality
  • Review and manage vendor contracts (MSAs, SOWs, NDAs), ensuring continuity and policy compliance
  • Support reporting and continuous improvement of procurement and supplier governance processes
What we offer
What we offer
  • Attractive compensation package consisting of base salary and the potential to earn a significant bonus for top performance
  • Health insurance
  • Gympass
  • 40% discount on all Fever events and experiences
  • English Lessons
  • Home-office friendly
  • Work in a location in the heart of Madrid, with possible travel across our markets
  • Possibility to receive in advance part of your salary by Payflow and other benefits such as Flexible remuneration with a 100% tax exemption through Cobee
  • Opportunity to have a real impact in a high-growth global category leader
  • Responsibility from day one and professional and personal growth
  • Fulltime
Read More
Arrow Right

Security Governance & Compliance Specialist

The Senior Privacy Analyst is part of a global team who ensures Cisco complies w...
Location
Location
Poland , Krakow
Salary
Salary:
Not provided
Cisco
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A Bachelor's degree in Computer Science, Information Technology, Law, or a related field is typically required, with 2–5 years of experience in privacy compliance, risk management, or data protection
  • Deep understanding of data protection laws, including GDPR, CCPA, along with the ability to monitor emerging legislation
  • Hands-on experience with privacy management platforms (e.g., Securiti.ai, OneTrust)
  • Proven certification holding CIPP/E (Certified Information Privacy Professional/Europe), CIPP/US, or CIPM (Certified Information Privacy Manager)
Job Responsibility
Job Responsibility
  • Research and respond to privacy requests sent to Cisco for action
  • Coordinate with database admin teams across Cisco to assure requests are fully addressed within the legally defined timelines, with special attention focused on those that are high priority
  • Use Privacy Response tool(s) to document remediation actions taken
  • Leverage more than 180 templates to craft legally approved communications
  • and continue to expand template catalog
  • Educate and share best practices with other team members to improve overall ability to respond to new requests
What we offer
What we offer
  • Benefits & perks designed to support every aspect of your life: from your well-being to your time away to your family
Read More
Arrow Right

Specialist – Governance, Risk & Control

To manage and lead the Technology Security Governance, Risk, Compliance and Assu...
Location
Location
Lesotho
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Degree or equivalent in IT/Engineering or relevant tertiary qualification
  • Knowledge of legal, regulatory and privacy requirements, such as Personally Identifiable Information (PII), GDPR, etc.
  • Proven experience managing and operating multiple security programs, projects, and initiatives
  • Ability to write reports for different security stakeholders
  • Proficient in preparation of reports, dashboards and documentation
  • Knowledge of and experience with GDPR
  • Web Application security and best practises
  • Business Analysis skills
  • High competence in Programming skills
  • Risk assessment skills
Job Responsibility
Job Responsibility
  • Direct, develop, implement and maintain a comprehensive Vodacom-wide information security governance, risk and compliance strategy
  • Ensure security is embedded in IT System and Network Infrastructure (Mobile, IS and Enterprise) across the Vodacom
  • Ensure timely delivery of technology security assurance and support for projects
  • Provide accurate and timely reporting of technology security risks identified during project engagement and propose remediation and mitigation options
  • Monitor information security governance, risk, and compliance by Vodacom BIT, Mobile and Enterprise Business domains
  • Ensure alignment of information security governance with the Vodacom’s business objectives, the information security strategy, plans and controls
  • Ensure compliance with the applicable legislative and regulatory interpretation and corporate risk appetite
  • With the assistance of Head: Technology Governance, Lead, develop, manage and maintain the Vodacom-wide information security governance deliverables lifecycle including compliance measurement, deviations and exemptions
  • Engage with the stakeholders on compliance to control effectiveness and deficiencies in the design and operating effectiveness of information security controls, design and recommend opportunities for continuous improvement
  • Develop, manage and implement the Vodacom information security audit and assurance plans and schedules, including any specific business needs and requirements (including PCI, ISO27001, GDPR, Data Protection Act of Lesotho, Cyber Crime Bill)
Read More
Arrow Right

Risk & Governance Specialist

This role is pivotal in safeguarding BT’s commercial integrity and ensuring that...
Location
Location
United Kingdom , Cheltenham; Ipswich; London; Manchester
Salary
Salary:
Not provided
plus.net Logo
Plusnet
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of commercial risk, contract governance, and internal control frameworks
  • Experience managing risk registers, RAID logs, and compliance reporting in a commercial or operational environment
  • Familiarity with regulatory and contractual compliance requirements in telecoms or similar sectors
  • Proven ability to lead and deliver risk and governance initiatives in a fast-paced, transformation-focused environment
  • Risk Management
  • Data Analysis
  • Contract Management
  • Relationship Building
  • Change Management
  • Must have lived in UK for 10+ years to obtain clearance
Job Responsibility
Job Responsibility
  • Proactively identify, assess, and monitor risks across major contracts, frameworks, and commercial programmes, ensuring alignment with BT’s risk appetite and strategic goals
  • Implement and maintain governance frameworks that ensure compliance with BT’s internal policies, regulatory requirements, and contractual obligations
  • Act as a subject matter expert on BT’s commercial governance policies, including Delegation of Authority (DoA), contract governance, and risk escalation protocols
  • Produce regular risk and governance reports for senior leadership, highlighting emerging risks, control effectiveness, and compliance trends
  • Collaborate with Client Partners, Commercial Operations, Legal, Finance, and Delivery teams to embed governance and risk awareness into day-to-day operations
What we offer
What we offer
  • 10% on target bonus (Depending on country based)
  • BT Pension scheme, minimum 5% Employee contribution, BT contribution 10%
  • On-call allowance (Depending on role requirements)
  • 25 days annual leave (not including bank holidays), increasing with service
  • Huge range of flexible benefits including cycle to work, healthcare, season ticket loan
  • World-class training and development opportunities
  • From January 2025, equal family leave: receive 18 weeks at full pay, 8 weeks at half pay and 26 weeks at the statutory rate. It’s for all parents, no matter how your family is made up
  • Enhanced women’s health support: including help with menopause symptoms, cancer screenings, period care and more
  • 24/7 private virtual GP appointments for UK colleagues
  • 2 weeks paid carer’s leave
  • Fulltime
Read More
Arrow Right

Senior Specialist, Quality Risk & Governance

At Amgen, we are relentless in applying the highest ethical standards to our pro...
Location
Location
United States , Thousand Oaks
Salary
Salary:
132037.30 - 178638.70 USD / Year
amgen.com Logo
Amgen
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Doctorate degree and 2 years of Quality, Operations, Manufacturing, Regulatory, Clinical, or related GxP experience in biotechnology, pharmaceutical, or regulated industry experience
  • Master's degree and 4 years of Quality, Operations, Manufacturing, Regulatory, Clinical, or related GxP experience in biotechnology, pharmaceutical, or regulated industry experience
  • Bachelor's degree and 6 years of Quality, Operations, Manufacturing, Regulatory, Clinical, or related GxP experience in biotechnology, pharmaceutical, or regulated industry experience
  • Associate's degree and 10 years of Quality, Operations, Manufacturing, Regulatory, Clinical, or related GxP experience in biotechnology, pharmaceutical, or regulated industry experience
  • High school diploma / GED and 12 years of Quality, Operations, Manufacturing, Regulatory, Clinical, or related GxP experience in biotechnology, pharmaceutical, or regulated industry experience
Job Responsibility
Job Responsibility
  • Support implementation and continuous improvement of enterprise Quality Risk Management (QRM) frameworks aligned with global regulatory expectations
  • Facilitate risk identification, assessment, mitigation, escalation, and monitoring activities across GxP functions and sites
  • Partner with cross-functional stakeholders to identify emerging compliance and operational risks across the product lifecycle
  • Support development and monitoring of Key Risk Indicators (KRIs), quality metrics, and risk dashboards to enable proactive decision-making
  • Conduct risk trending, signal analysis, and data evaluation to identify systemic issues and opportunities for mitigation
  • Assist with governance and oversight of enterprise risk registers, risk review forums, and escalation pathways
  • Collaborate with Digital and Quality Systems teams to support risk management process integration within Veeva or other quality technology platforms
  • Support inspection readiness activities and provide SME support during internal audits and regulatory inspections related to risk management processes
  • Contribute to development of training materials and risk management capability-building initiatives across the organization
  • Monitor industry trends, regulatory updates, and emerging technologies related to Quality Risk Management and digital quality transformation
What we offer
What we offer
  • Comprehensive employee benefits package, including a Retirement and Savings Plan with generous company contributions, group medical, dental and vision coverage, life and disability insurance, and flexible spending accounts
  • Discretionary annual bonus program, or for field sales representatives, a sales-based incentive plan
  • Stock-based long-term incentives
  • Award-winning time-off plans
  • Flexible work models where possible
  • Fulltime
Read More
Arrow Right

Risk and Compliance Specialist

We are looking for a Risk and Compliance Specialist to join a contract opportuni...
Location
Location
United States , Chicago
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Risk Management, Information Systems, Cybersecurity, or a related discipline
  • 1–3+ years of experience in risk management, internal audit, IT compliance, or a similar function
  • Background in a Big 4 environment and possession of a recognized certification such as CISA or an equivalent credential
  • Working knowledge of IT audit and compliance frameworks, including COBIT, ISO/IEC standards, NIST 800-53, and SOC controls
  • Hands-on experience with ITGC reviews, audit support, audit findings management, and access control concepts
  • Ability to explain technical risk clearly to varied audiences and convert regulatory requirements into practical business solutions
  • Advanced proficiency with Microsoft Office applications and strong written and verbal communication skills
Job Responsibility
Job Responsibility
  • Partner with security, technology, and product teams to evaluate risks, improve control design, and support a consistent compliance posture across the organization
  • Perform assessments of IT general controls, including user access, change governance, segregation of duties, operational procedures, asset oversight, encryption practices, and secure development controls
  • Support internal and external audit activities by preparing documentation, organizing evidence, and helping address findings through clear remediation plans
  • Apply recognized frameworks such as COBIT, ISO 27001, ISO 27018, NIST 800-53, and SOC-related standards to review controls and identify gaps or improvement opportunities
  • Translate audit and regulatory requirements into repeatable processes that reduce manual effort while improving the quality and defensibility of compliance activities
  • Create process maps, control narratives, and other supporting materials that clearly document workflows, risks, and control ownership
  • Contribute to security risk assessments and control testing efforts to validate that policies and procedures are operating effectively
  • Assist with the development or enhancement of automated evidence gathering and reporting methods, including integration with audit, ticketing, or asset management platforms where applicable
What we offer
What we offer
  • Medical, vision, dental, and life and disability insurance
  • enrollment in company 401(k) plan
Read More
Arrow Right