CrawlJobs Logo
Robert Half Logo Robert Half · IT - Administration

IT GRC Analyst

United States, Austin · Job Posted March 22, 2026
Apply Position
Job Link Share

Job Description

We are partnering with a growing IT team in Austin to hire a dedicated IT GRC Analyst. This role focuses on ensuring compliance with cybersecurity standards while maintaining robust governance practices across systems and processes. The ideal candidate will possess expertise in risk management frameworks and a strong understanding of cybersecurity requirements.

Job Responsibility

  • Develop and implement governance frameworks to ensure alignment with NIST and other cybersecurity standards
  • Conduct regular assessments to monitor compliance with Service Organization Control (SOC) requirements
  • Collaborate with cross-functional teams to identify risks and propose mitigation strategies
  • Create detailed reports on compliance performance and recommend process improvements
  • Maintain documentation of cybersecurity policies and procedures for audit readiness
  • Monitor and evaluate data systems to identify vulnerabilities and ensure adherence to security protocols
  • Provide guidance and training to team members on governance and compliance best practices
  • Participate in audits and respond to inquiries related to cybersecurity compliance
  • Research and stay updated on industry trends to enhance governance strategies
  • Support the integration of new technologies while maintaining compliance with established standards

Requirements

  • Minimum of 3 years of experience in IT governance, risk management, and compliance
  • Proficiency in NIST frameworks and cybersecurity compliance practices
  • Experience with Service Organization Control (SOC) reporting and auditing
  • Strong analytical skills and attention to detail in evaluating systems and processes
  • Ability to manage multiple projects and prioritize tasks effectively
  • Excellent verbal and written communication skills for reporting and collaboration
  • Familiarity with risk management tools and methodologies
  • Bachelor’s degree in Information Technology, Computer Science, or a related field

What we offer

  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
Robert Half - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

IT GRC Analyst

8 matching positions

Senior Cyber Security GRC Analyst

We are currently seeking a Senior Cyber Security GRC Analyst to join FinXL and t...
Location
Location
Australia , North Sydney
Salary
Salary:
Not provided
finxl.com.au Logo
FinXL
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience as a Senior Cyber Security GRC Analyst
  • Strong experience in Cyber Security GRC, Risk, or Compliance roles
  • Experience working with control frameworks such as NIST SP 800-53
  • Experience writing policies, standards, and control documentation from scratch
  • Experience conducting control assurance, testing or audit support activities
  • Experience in stakeholder engagement, running workshops & influencing outcomes
  • Experience implementing security controls
  • Experience in control uplift or transformation programs
  • Experience translating NIST security controls into clear, business-friendly requirements
  • Experience defining control objectives, parameters & implementation guidance aligned to organisational context
Job Responsibility
Job Responsibility
  • Support the definition, documentation & assurance of security controls aligned to NIST SP 800-53
Read More
Arrow Right

Senior Staff Analyst, GRC

Mozilla Corporation is the non-profit-backed technology company that has shaped ...
Location
Location
Germany;Canada;Spain;United States;United Kingdom
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools, )
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives
  • Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues
  • Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Ensure compliance with various regulatory standards and frameworks (ISO, NIST, SOC2, CCPA, GDPR, etc)
  • Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
  • Fulltime
Read More
Arrow Right

Information Security GRC Analyst

Our Financial Services client has an exciting vacancy within their Information S...
Location
Location
United Kingdom , Liverpool
Salary
Salary:
40000.00 - 50000.00 GBP / Year
brosterbuchanan.com Logo
Broster Buchanan
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 2 – 3 years’ experience in information security roles
  • Experience with risk assessment methodologies
  • Excellent analytical and problem-solving skills with attention to detail
  • Strong communication skills with the ability to explain complex security concepts to non – technical stakeholders
  • Knowledge of information security frameworks such as ISO 27001 or NIST
  • Eligibility to work in the UK
Job Responsibility
Job Responsibility
  • Work with all parties across the business to identify and assess risk and ensure mitigations are tracked to completion
  • Support the development and maintenance of information security policies, standards and procedures in line with regulatory frameworks and industry standards
  • Support third party risk management processes
  • Work with Security Operations and IT teams to provide oversight of vulnerability assessments and remediation activities
  • Manage security architecture reviews for new systems and services
  • Evaluate security controls and recommending improvements
  • Support the implementation of security tools and technologies
  • Provide oversight of the security incident management process
  • Provide security metrics for interested parties at all levels
  • Support the security awareness programme to promote a culture of security within all levels of the Group
  • Fulltime
Read More
Arrow Right

Senior Staff Analyst, GRC

The role is part of the Security Function within the broader Mozilla Infrastruct...
Location
Location
Salary
Salary:
Not provided
mozilla.org Logo
Mozilla
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of progressive experience in developing and delivering an integrated GRC framework
  • Strong understanding and deep knowledge of regulatory frameworks, processes and tools related to building a robust GRC framework
  • Experience leading and delivering cross functional requirements for product & enterprise teams to implement controls and measures to meet compliance requirements
  • Relevant industry certifications (CISA, CISSP, CISM, CRISC, etc)
  • Hands-on understanding of using various technology and tools (SEIM, BI Tools)
  • Ability to develop Root Cause Analysis (RCA) and remediation plans to resolve risk deficiencies working with respective stakeholder teams
  • Strong critical thinking skills with the ability to drive long term organizational impact
  • A background that demonstrates a bias for action and the ability to navigate constraints in order to achieve business outcomes
  • Ability to collaborate and influence a diverse group of stakeholders to address cross-functional challenges and lead change
Job Responsibility
Job Responsibility
  • Governance : develop and maintain a comprehensive GRC strategy and roadmap aligned with business objectives. Lead the creation and enforcement of standards, policies, controls, audits, reporting across various enterprise and product verticals
  • Risk Mgmt : develop and operationalize a risk assessment and management framework on a periodic basis to enable prioritization and remediation of critical issues. Define and deliver measurable scorecards and metrics to enable data driven decision making
  • Compliance : ensure compliance with various regulatory standards and frameworks ( ISO, NIST, SOC2, CCPA, GDPR, etc). Lead internal and external audit activities including tracking and resolving deficiencies and remediations
  • Partner closely with Legal / IT / Finance / Security to align on the GRC program and deliver a cohesive integrated risk management framework
  • Led defining requirement and reporting (scorecards) of data life cycle management across enterprise and product domains working with data platform and legal team
What we offer
What we offer
  • Generous performance-based bonus plans to all eligible employees
  • Rich medical, dental, and vision coverage
  • Generous retirement contributions with 100% immediate vesting
  • Quarterly all-company wellness days
  • Country specific holidays plus a day off for your birthday
  • One-time home office stipend
  • Annual professional development budget
  • Quarterly well-being stipend
  • Considerable paid parental leave
  • Employee referral bonus program
Read More
Arrow Right

Grc Analyst

We are looking for a proactive and analytical GRC Analyst to join our CISO team....
Location
Location
India , Pune
Salary
Salary:
Not provided
checkmarx.com Logo
Checkmarx
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Computer Science, Risk Management, or related field
  • 2+ years of experience in GRC, enterprise risk management, or information security roles
  • Experience supporting SOC 2 and/or ISO 27001 audits
  • Working knowledge of privacy regulations and information security frameworks (e.g., NIST, CIS, ISO 27001, GDPR)
  • Experience with GRC platforms or risk management tools (e.g., OneTrust, ServiceNow, Archer) is an advantage
  • Familiarity with cloud security concepts (AWS, Azure, GCP) and SaaS environments
  • One or more of the following Certificates (Highly desirable): CISSP, CRISC, CISA, CISM, CGRC
Job Responsibility
Job Responsibility
  • Maintain and continuously improve the Enterprise Risk Management framework
  • Facilitate enterprise-wide risk assessments across business units
  • Develop and maintain risk taxonomy, scoring methodology, and risk registers
  • Define and monitor Key Risk Indicators (KRIs) and risk metrics
  • Conduct control effectiveness reviews in partnership with control owners
  • Support risk assessments related to cloud, SaaS, AI, and emerging technologies
  • Ensure compliance with relevant laws, regulations, and standards (e.g., SOC 2, ISO 27001, NIST, GDPR)
  • Support internal and external audits, including evidence collection, documentation preparation, and stakeholder coordination
  • Collaborate with cross-functional teams, including Legal, Procurement, R&D, and IT, to address GRC-related matters
  • Assist in the continuous improvement of GRC programs and initiatives
What we offer
What we offer
  • great work environment
  • professional development
  • challenging careers
  • competitive compensation
  • great work-life balance
  • great benefits and perks throughout the year
  • Fulltime
Read More
Arrow Right

Staff GRC Analyst

We are looking for a Staff GRC Analyst to join our Governance, Risk, and Complia...
Location
Location
United States , San Francisco
Salary
Salary:
180000.00 - 270000.00 USD / Year
vercel.com Logo
Vercel
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience managing and running audits, certification programs and enterprise control assessments, including scope planning, defining requirements, policy and standards development, and control testing
  • Deep knowledge of audit processes, evidence requirements, and remediation lifecycle management for security and compliance frameworks (i.e., SOC 2, ISO 27001, PCI DSS)
  • Proven experience owning large-scale GRC programs, collaborating with technical and non-technical teams and driving initiatives to completion
Job Responsibility
Job Responsibility
  • Own and scale commercial attestation program and audits (i.e., SOC 2, ISO 27001, PCI DSS, etc.) while maintaining alignment with business objectives and market demand
  • Design and strengthen continuous monitoring processes to improve control effectiveness and mature control implementation from audit-ready to always-ready
  • Drive evolution of security and compliance control frameworks that set the direction for proactive risk management
  • Partner with cross-functional stakeholders, acting as a strategic connector to plan, implement, maintain & remediate control activities and supporting requirements (e.g. policies, standards, processes, system configurations, etc.)
  • Champion a culture of compliance accountability and business-enablement across the organization through autonomous program governance and reporting and building trusted relationships
What we offer
What we offer
  • Competitive compensation package, including equity
  • Inclusive Healthcare Package
  • Learn and Grow - we provide mentorship and send you to events that help you build your network and skills
  • Flexible Time Off
  • We will provide you the gear you need to do your role, and a WFH budget for you to outfit your space as needed
  • Fulltime
Read More
Arrow Right

Senior GRC Analyst

We are looking for a Senior GRC Analyst to lead and enhance our organization's I...
Location
Location
United States , Stamford
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum of 5 years of experience in IT governance, risk, and compliance roles
  • Strong knowledge of compliance frameworks such as SOX, DFARS, and ITAR
  • Expertise in risk management methodologies and IT policy development
  • Experience with backup technologies and disaster recovery planning
  • Familiarity with data privacy regulations and contractual compliance requirements
  • Proven ability to collaborate across departments and manage audit activities effectively
  • Excellent analytical and problem-solving skills with attention to detail
  • Strong communication skills to provide training and support for governance initiatives
Job Responsibility
Job Responsibility
  • Oversee and validate the effectiveness of IT security, governance, risk, and compliance programs
  • Facilitate alignment between IT and audit functions, ensuring adherence to industry standards and frameworks
  • Develop and enhance the enterprise IT governance roadmap to improve risk visibility and control effectiveness
  • Provide strategic guidance for system implementations, technology strategies, and service interruption responses
  • Collaborate with business units to align IT controls with organizational policies and industry trends
  • Support internal and external audit activities by preparing documentation, evidence, and self-assessments
  • Conduct IT risk assessments, including reviews of third-party providers, and contribute to broader compliance initiatives
  • Identify areas for governance enhancement and recommend technology solutions to mitigate risks
  • Develop and maintain IT governance policies, standards, and procedures to ensure regulatory and contractual compliance
  • Assist in continuity planning and risk mitigation related to disaster recovery and lifecycle management
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • company 401(k) plan
Read More
Arrow Right