ZipRecruiter

Log In

1

Cyber Security Grc Jobs (NOW HIRING)

swirecc

Cybersecurity GRC Engineer

Draper, UT

What does a Cybersecurity GRC Engineer do at Swire Coca - Cola? Swire Coca-Cola is seeking a Cybersecurity GRC Engineer to support the execution and continuous improvement of our governance, risk ...

swirecc

Cybersecurity GRC Engineer

Draper, UT

What does a Cybersecurity GRC Engineer do at Swire Coca - Cola? Swire Coca-Cola is seeking a Cybersecurity GRC Engineer to support the execution and continuous improvement of our governance, risk ...

swirecc

Cybersecurity GRC Engineer

Draper, UT

What does a Cybersecurity GRC Engineer do at Swire Coca - Cola? Swire Coca-Cola is seeking a Cybersecurity GRC Engineer to support the execution and continuous improvement of our governance, risk ...

GFiber

Cybersecurity GRC Manager

Mountain View, CA · On-site +1

$130K - $177K/yr

Identify and execute tactical opportunities to automate GRC workflows using an AI-native approach. * Apply key cybersecurity frameworks, specifically ISO 27001 and NIST CSF, to manage and mature our ...

next page

Showing results 1-20

All JobsCyber Security Grc Jobs

Cyber Security Grc information

See salary details

$40.5K

$122.9K

$180K

How much do cyber security grc jobs pay per year?

As of Jun 15, 2026, the average yearly pay for cyber security grc in the United States is $122,890.00, according to ZipRecruiter salary data. Most workers in this role earn between $102,000.00 and $142,000.00 per year, depending on experience, location, and employer.

What are some common challenges faced by Cyber Security GRC professionals, and how do they typically overcome them?

Cyber Security GRC professionals often face the challenge of keeping up with evolving regulations, adapting controls for new technologies, and coordinating between security teams and business units. To overcome these challenges, professionals stay current with industry standards, participate in ongoing training, and actively communicate policy changes and risk assessments to stakeholders across the organization. They also leverage robust GRC tools to streamline compliance processes and documentation. Working collaboratively with IT, legal, and compliance teams allows them to better identify risks and implement effective, practical security controls. This approach ensures a well-integrated and proactive risk management posture for the organization.

What is a GRC in cyber security?

In cybersecurity, GRC stands for Governance, Risk Management, and Compliance, and it refers to the framework that helps organizations align security strategies with business objectives, manage risks, and ensure regulatory compliance. Cybersecurity GRC professionals implement policies, conduct audits, and use tools like risk assessments and compliance frameworks to protect information assets.

Is GRC in high demand?

Cyber Security GRC (Governance, Risk, and Compliance) roles are in high demand due to increasing cybersecurity threats and regulatory requirements. Organizations seek professionals with skills in risk management, compliance frameworks, and security policies, often requiring certifications like CISA or CISSP. The demand is expected to grow as cybersecurity becomes a strategic priority across industries.

What is a Cyber Security GRC job?

A Cyber Security GRC (Governance, Risk, and Compliance) job focuses on ensuring an organization's security policies, risk management strategies, and regulatory compliance. Professionals in this role develop and enforce security policies, assess risks, and ensure adherence to industry regulations like GDPR, HIPAA, or ISO 27001. They collaborate with different teams to mitigate cybersecurity threats while aligning security practices with business goals. This role is critical for maintaining an organization's security posture and reducing potential risks.

Is GRC an entry level job?

A Cyber Security GRC (Governance, Risk, and Compliance) role is typically not entry-level and usually requires prior experience or knowledge of cybersecurity principles, risk management, and compliance frameworks. Entry-level positions in cybersecurity may involve supporting GRC functions but often require foundational certifications like CompTIA Security+ or similar skills. Advancing in GRC roles generally involves gaining relevant certifications and experience in security policies, audits, and regulatory standards.

What are the key skills and qualifications needed to thrive in the Cyber Security Grc position, and why are they important?

To thrive as a Cyber Security GRC professional, a solid understanding of information security frameworks, risk management, and regulatory compliance is essential, often supported by a degree in information security or a related field. Familiarity with GRC platforms (such as Archer, ServiceNow, or LogicGate), and certifications like CISSP, CISM, or CRISC, are highly valued. Excellent analytical skills, attention to detail, and the ability to communicate complex risks to non-technical stakeholders are critical soft skills. These capabilities ensure organizations remain secure, compliant, and able to effectively manage evolving cyber risks.

Can you make $500,000 a year in cyber security?

Cyber Security GRC professionals can potentially earn $500,000 annually, especially at senior levels or in executive roles such as Chief Information Security Officer (CISO). Achieving this salary typically requires extensive experience, advanced certifications like CISSP or CISM, and working in high-demand industries or large organizations. Salary varies based on location, company size, and individual expertise.
More about Cyber Security Grc jobs
What cities are hiring for Cyber Security Grc jobs? Cities with the most Cyber Security Grc job openings:
What are the most commonly searched types of Cyber Security Grc jobs? The most popular types of Cyber Security Grc jobs are:
What states have the most Cyber Security Grc jobs? States with the most job openings for Cyber Security Grc jobs include:
What job categories do people searching Cyber Security Grc jobs look for? The top searched job categories for Cyber Security Grc jobs are:
Cyber Security Grc jobs near you
Infographic showing various Cyber Security Grc job openings in the United States as of June 2026, with employment types broken down into 100% Full Time. Highlights an 100% In-person job distribution, with an average salary of $122,890 per year, or $59.1 per hour.

Cybersecurity GRC Engineer

swirecc

Draper, UT

Other

Posted 3 days ago

Job description

What does a Cybersecurity GRC Engineer do at Swire Coca - Cola?
Swire Coca-Cola is seeking a Cybersecurity GRC Engineer to support the execution and continuous improvement of our governance, risk, and compliance (GRC) program. This role works under the direction of the GRC Manager and is responsible for performing day-to-day risk, compliance, and audit activities that ensure our cybersecurity program remains aligned with regulatory, contractual, and business requirements. The GRC Engineer plays a critical role in operationalizing cybersecurity governance by conducting risk assessments, supporting audits, maintaining control frameworks, and partnering across IT and business teams to track and remediate findings. This role requires a detail-oriented and analytical individual who can translate technical controls and risks into clear documentation and actionable insights.
Responsibilities

  • Perform cybersecurity risk assessments for systems, applications, and business processes
  • Support third-party/vendor risk assessments and due diligence reviews
  • Identify control gaps, document risks, and assist in developing remediation plans
  • Maintain and update the enterprise risk register, including risk scoring and tracking
  • Partner with control owners to validate mitigation efforts and risk status
  • Support internal and external audits by coordinating evidence collection and responses
  • Track audit findings, remediation activities, and validate closure
  • Assist with security questionnaires, RFP responses, and due diligence requests
  • Help ensure compliance with regulatory and contractual requirements
  • Maintain and update cybersecurity policies, standards, and procedures
  • Support mapping of controls to frameworks such as NIST CSF, ISO 27001, and CIS
  • Assist in the development and maintenance of a unified control framework
  • Support control testing activities and documentation of effectiveness
  • Develop and maintain GRC metrics, dashboards, and reporting artifacts
  • Track key risk indicators (KRIs), audit trends, and remediation progress
  • Prepare reports and summaries for leadership and stakeholders
  • Maintain organized documentation and evidence repositories
  • Partner with cross-functional teams to drive risk awareness and remediation efforts
  • Support process improvements to enhance GRC efficiency and scalability
  • Assist in implementing and optimizing GRC tools and automation
  • Stay current on cybersecurity risks and compliance requirements
  • Performs other duties as assigned.


Requirements

  • Bachelor’s Degree in Cybersecurity, Information Technology, Risk Management, or related field required
  • Relevant certifications such as Security+, CISA, CRISC, or similar preferred
  • 3+ years of experience in cybersecurity, risk, compliance, or audit roles required
  • Experience supporting audits, risk assessments, and compliance activities required
  • Experience collaborating across IT and business teams required
  • Working knowledge of NIST CSF, ISO 27001, and CIS frameworks
  • Strong analytical, documentation, and organizational skills
  • Ability to communicate technical concepts to non-technical stakeholders
  • Familiarity with GRC tools such as ServiceNow GRC, Archer, Drata, Vanta, or similar preferred

Apply