1

Cyber Security Grc Jobs (NOW HIRING)

Cybersecurity Senior GRC Analyst

Denver, PA ยท On-site

$96K - $123K/yr

The GRC Cybersecurity Senior Analyst will report directly to the Global Cybersecurity Risk Manager. This role involves collaborating with cross-functional teams to design, implement, and maintain ...

Cybersecurity Senior GRC Analyst

Denver, PA ยท On-site

$96K - $123K/yr

The GRC Cybersecurity Senior Analyst will report directly to the Global Cybersecurity Risk Manager. This role involves collaborating with cross-functional teams to design, implement, and maintain ...

Cyber GRC Transformation Manager

Ashburn, VA ยท On-site

$113K - $153K/yr

As the Manager of Cybersecurity GRC Transformation, you will lead two critical, high-impact pillars: driving the business integration of a massive enterprise Archer migration and architecting the ...

Cyber GRC Transformation Manager

Concord, NC ยท On-site

$103K - $139K/yr

As the Manager of Cybersecurity GRC Transformation, you will lead two critical, high-impact pillars: driving the business integration of a massive enterprise Archer migration and architecting the ...

Senior Cybersecurity GRC Engineer

Seattle, WA ยท On-site

$156K - $219K/yr

As part of a passionate and accomplished team of Cyber Security experts, you will protect and ... Create GRC dashboards that integrate data from existing observability solutions and can be used to ...

next page

Showing results 1-20

Cyber Security GRC information

See salary details

$40.5K

$122.9K

$180K

How much do cyber security grc jobs pay per year?

As of Jul 13, 2026, the average yearly pay for cyber security grc in the United States is $122,890.00, according to ZipRecruiter salary data. Most workers in this role earn between $102,000.00 and $142,000.00 per year, depending on experience, location, and employer.

What are some common challenges faced by Cyber Security GRC professionals, and how do they typically overcome them?

Cyber Security GRC professionals often face the challenge of keeping up with evolving regulations, adapting controls for new technologies, and coordinating between security teams and business units. To overcome these challenges, professionals stay current with industry standards, participate in ongoing training, and actively communicate policy changes and risk assessments to stakeholders across the organization. They also leverage robust GRC tools to streamline compliance processes and documentation. Working collaboratively with IT, legal, and compliance teams allows them to better identify risks and implement effective, practical security controls. This approach ensures a well-integrated and proactive risk management posture for the organization.

Is GRC in high demand?

Cyber Security GRC (Governance, Risk, and Compliance) professionals are in high demand due to increasing cybersecurity regulations and the need for organizations to manage risk effectively. Employers seek candidates with knowledge of compliance frameworks, risk management tools, and relevant certifications like CISA or CISSP, making GRC roles a growing area within cybersecurity careers.

What is a Cyber Security GRC job?

A Cyber Security GRC (Governance, Risk, and Compliance) job focuses on ensuring an organization's security policies, risk management strategies, and regulatory compliance. Professionals in this role develop and enforce security policies, assess risks, and ensure adherence to industry regulations like GDPR, HIPAA, or ISO 27001. They collaborate with different teams to mitigate cybersecurity threats while aligning security practices with business goals. This role is critical for maintaining an organization's security posture and reducing potential risks.

What are the key skills and qualifications needed to thrive in the Cyber Security Grc position, and why are they important?

To thrive as a Cyber Security GRC professional, a solid understanding of information security frameworks, risk management, and regulatory compliance is essential, often supported by a degree in information security or a related field. Familiarity with GRC platforms (such as Archer, ServiceNow, or LogicGate), and certifications like CISSP, CISM, or CRISC, are highly valued. Excellent analytical skills, attention to detail, and the ability to communicate complex risks to non-technical stakeholders are critical soft skills. These capabilities ensure organizations remain secure, compliant, and able to effectively manage evolving cyber risks.

What is GRC in cyber security?

GRC in cybersecurity stands for Governance, Risk Management, and Compliance. It involves establishing policies, assessing risks, and ensuring adherence to regulations to protect organizational information assets. Cybersecurity professionals working in GRC often use frameworks like ISO 27001 or NIST to guide their efforts.

Is GRC cybersecurity a good job?

Cyber Security GRC (Governance, Risk, and Compliance) roles are in demand due to increasing cybersecurity regulations and organizational needs for risk management. These positions often require knowledge of compliance frameworks, risk assessment, and security policies, and can offer stable employment with opportunities for advancement. The job can be rewarding for those interested in policy, audit, and security governance aspects of cybersecurity.

Can you make $200,000 in cyber security?

Cyber Security GRC professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISA, and leadership roles such as GRC manager or director. Salaries vary based on industry, location, and company size, with senior positions often reaching or exceeding this level. Developing expertise in risk management, compliance, and security frameworks can help achieve higher compensation in this field.
What cities are hiring for Cyber Security Grc jobs? Cities with the most Cyber Security Grc job openings:
What are the most commonly searched types of Cyber Security Grc jobs? The most popular types of Cyber Security Grc jobs are:
What states have the most Cyber Security Grc jobs? States with the most job openings for Cyber Security Grc jobs include:
What job categories do people searching Cyber Security Grc jobs look for? The top searched job categories for Cyber Security Grc jobs are:
Infographic showing various Cyber Security Grc job openings in the United States as of July 2026, with employment types broken down into 1% Internship, 95% Full Time, 2% Part Time, and 2% Contract. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $122,890 per year, or $59.1 per hour.
Cybersecurity Senior GRC Analyst

Cybersecurity Senior GRC Analyst

UGI

Denver, PA โ€ข On-site

$96K - $123K/yr

Other

Re-posted 8 days ago


Job description

Requisition Number:ย 28916ย 

At UGI Utilities, Inc. we believe in providing a superior range of energy products and services to our customers in a safe, affordable manner. As our energy needs evolve, UGI will be there providing safe and reliable service that brings warmth and comfort to our 750,000 customers in 45 counties in Pennsylvania and 1 county in Maryland.

We strive to reflect the communities we serve by attracting and retaining top talent, while maintaining a diverse workforce that embraces our culture of safety, service, and integrity. As an employee of UGI Utilities, you can expect a competitive total compensation plan and comprehensive benefits. Employees work in a collaborative environment, have upward mobility opportunities, and the ability to enjoy a true work life balance.

To learn more about UGI's workplace culture, sustainability efforts, and commitment to inclusivity, we invite you to visit our UGI Corporate sustainability page.ย 

Apply to UGI Utilities today to share in our mission and support countless neighbors, friends, and families in providing best-in-class products and services!

Job Summary

The Governance Risk & Compliance (GRC) Cybersecurity Senior Analyst ย plays a critical role in ensuring that UGI Utilities Inc. operates within its regulatory, legal, and compliance obligations while managing risk effectively. The GRC Cybersecurity Senior Analyst ย will report directly to the Global Cybersecurity Risk Manager. This role involves collaborating with cross-functional teams to design, implement, and maintain governance, risk, and compliance processes for UGI Utilities Inc. cybersecurity regulatory requirements. The ideal candidate is detail-oriented, analytical, and experienced in compliance, risk management frameworks, and governance best practices.

Key Responsibilities:

Governance:

  • Track UGI Utilities, Inc. compliance to the cybersecurity regulatory requirements (i.e., TSA, PUC, etc.) ย 
  • Through collaboration assist with tracking the maintenance of processes and procedure documentation that supports the compliance to regulatory requirements.
  • Assist with the review of policies and standards through collaborating with stakeholders.
  • Collaborate with stakeholders to establish and track metrics for UGI Utilities, Inc. cybersecurity regulatory governance programs.
  • Collaborate with stakeholders who monitor regulatory requirements and monitor industry developments to ensure compliance with changes.

Risk Management:

  • Responsible for tracking all activities (i.e., Tabletop exercises, Cybersecurity Architecture Design Reviews, TSA Cybersecurity Action Plan, the Biennial cybersecurity audit ,etc.) to measure regulatory compliance for required internal and external assessments related to UGI Utilities, Inc.
  • Track all gaps from internal and external assessments to completion. ย  ย 

Compliance:

  • Create awareness of compliance to company policies and standards and regulatory requirements through monitoring and reporting.
  • Collaborate with IT stakeholders to monitor UGI Utilities, Inc. cybersecurity exceptions and other IT operational activities that may have gaps.ย 

Collaboration and Reporting:

  • Partner with IT, Legal, HR, Enterprise Risk Management and other departments to ensure alignment on risk and compliance efforts.
  • Collaborate with stakeholders to ensure they have operational metrics to monitor their compliance.
  • Collaborate with the Cybersecurity GRC team to deliver regular risk and compliance metrics for the IT senior leadership.

Qualifications:

  • Bachelor's degree in Information Security, Risk Management, Computer Science, or related field, required.
  • 4+ years of experience in GRC, risk management, or compliance roles.

Skills and Competencies:

  • Strong understanding of GRC tools and platforms (e.g., RSA Archer, ServiceNow GRC, Fusion).
  • Familiarity with risk management frameworks (e.g., NIST 800, COBIT, FAIR) and compliance standards.
  • Exceptional analytical, problem-solving, and organizational skills.
  • Strong written and verbal communication skills, with the ability to interact effectively with stakeholders at all levels.
  • Certifications such as CISA, CRISC, CISSP, CMMC, or PCI ย preferred.

Key Attributes:

  • Attention to detail and ability to manage multiple priorities.
  • Proactive mindset with a focus on continuous improvement.
  • Collaborative team player who can influence without authority.

ย UGI Utilities, Incย is an Equal Opportunity Employer. The Company does not discriminate on the basis of race, color, sex, national origin, disability, age, gender identity, sexual orientation, veteran status, or any other legally protected class in its practices.

Successful applicants shall be required to pass a pre-employment drug screen as a condition of employment, and if hired, shall be subject to substance abuse testing in accordance with UGI policies.

As a federal contractor that engages in safety-sensitive work, UGI cannot permit employees in certain positions to use medical marijuana, even if prescribed by an authorized physician. Similarly, applicants for such positions who are actively using medical marijuana may be denied hire on that basis.


UGI logo

About UGI

Sourced by ZipRecruiter

UGI Corporation, headquartered in King of Prussia, PA, US, is a diversified utility service company engaged in the distribution and marketing of energy products and services on an international scale. Founded in 1882, the corporation operates through its various subsidiaries in the domestic and international markets. Its repertoire of products and services includes natural gas, liquid fuels, and electricity. The company has fundamentally positioned itself as a leader in the energy industry with a commitment to safety, reliability, and exceptional service. UGI's mission revolves around leading the way in delivering reliable, safe, and efficient energy solutions for customers.

Industry

Utilities

Company size

10,000+ Employees

Headquarters location

King of Prussia, PA, US

Year founded

1882

Social media