Senior IT GRC Analyst
$80K - $165K/yr
Responsible for leading Cybersecurity and IT governance, risk, and compliance efforts, including ... Perform formal risk analysis and self-assessments for technology processes, leveraging industry ...
$80K - $165K/yr
Responsible for leading Cybersecurity and IT governance, risk, and compliance efforts, including ... Perform formal risk analysis and self-assessments for technology processes, leveraging industry ...
$80K - $165K/yr
Responsible for leading Cybersecurity and IT governance, risk, and compliance efforts, including ... Perform formal risk analysis and self-assessments for technology processes, leveraging industry ...
... operations, and cybersecurity teams to support service reviews, performance reporting, and ... analysis, or risk management functions in a federal or enterprise IT environment, including ...
... operations, and cybersecurity teams to support service reviews, performance reporting, and ... analysis, or risk management functions in a federal or enterprise IT environment, including ...
... operations, and cybersecurity teams to support service reviews, performance reporting, and ... analysis, or risk management functions in a federal or enterprise IT environment, including ...
... operations, and cybersecurity teams to support service reviews, performance reporting, and ... analysis, or risk management functions in a federal or enterprise IT environment, including ...
Liberty Lake, WA · On-site
$48.43 - $67.80/hr
... with the STCU risk appetite and sufficient to maintain the confidentiality, integrity and ... and analysis, intrusion prevention systems, firewalls, VPNs, and other security control systems.
Liberty Lake, WA · On-site
$48.43 - $67.80/hr
... with the STCU risk appetite and sufficient to maintain the confidentiality, integrity and ... and analysis, intrusion prevention systems, firewalls, VPNs, and other security control systems.
Liberty Lake, WA · On-site
$48.43 - $67.80/hr
... with the STCU risk appetite and sufficient to maintain the confidentiality, integrity and ... and analysis, intrusion prevention systems, firewalls, VPNs, and other security control systems.
Liberty Lake, WA · On-site
$48.43 - $67.80/hr
... with the STCU risk appetite and sufficient to maintain the confidentiality, integrity and ... and analysis, intrusion prevention systems, firewalls, VPNs, and other security control systems.
Spokane, WA · On-site
$103K - $165K/yr
The position requires understanding of cybersecurity controls and deliverables, knowledge of C ... Performing periodic risk assessment of security vulnerabilities in software for the product by ...
Spokane, WA · On-site
$103K - $165K/yr
The position requires understanding of cybersecurity controls and deliverables, knowledge of C ... Performing periodic risk assessment of security vulnerabilities in software for the product by ...
Spokane, WA · On-site +1
$103K - $165K/yr
The position requires understanding of cybersecurity controls and deliverables, knowledge of C ... Performing periodic risk assessment of security vulnerabilities in software for the product by ...
Spokane, WA · On-site +1
$103K - $165K/yr
The position requires understanding of cybersecurity controls and deliverables, knowledge of C ... Performing periodic risk assessment of security vulnerabilities in software for the product by ...
Maintain relationships with Abiomed's Information Sharing and Analysis Organizations. * Guide teams ... NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR). * Experience with security risk ...
Maintain relationships with Abiomed's Information Sharing and Analysis Organizations. * Guide teams ... NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR). * Experience with security risk ...
Spokane, WA · On-site +1
Maintain relationships with Abiomed's Information Sharing and Analysis Organizations. * Guide teams ... NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR). * Experience with security risk ...
Spokane, WA · On-site +1
Maintain relationships with Abiomed's Information Sharing and Analysis Organizations. * Guide teams ... NIST Cybersecurity Framework, ISO27001, SOC2, HIPAA, GDPR). * Experience with security risk ...
Spokane, WA · On-site
$120K - $140K/yr
Lead complex or high-risk projects directly when needed, serving as project manager or escalation ... Cybersecurity Oversight * Ensure the organization's cybersecurity posture is actively managed ...
Quick apply
Spokane, WA · On-site
$120K - $140K/yr
Lead complex or high-risk projects directly when needed, serving as project manager or escalation ... Cybersecurity Oversight * Ensure the organization's cybersecurity posture is actively managed ...
Liberty Lake, WA · On-site
$134K - $201K/yr
We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies ... Analyze market trends and data, develop strategy and pipeline to meet cost reduction goals; * Drive ...
Liberty Lake, WA · On-site
$134K - $201K/yr
We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies ... Analyze market trends and data, develop strategy and pipeline to meet cost reduction goals; * Drive ...
Spokane, WA · On-site
$140K - $160K/yr
... cybersecurity, networking, data center, collaboration, and customer experience solutions-all ... Analyze sales data, pipeline trends, and performance metrics to identify improvement opportunities ...
Spokane, WA · On-site
$140K - $160K/yr
... cybersecurity, networking, data center, collaboration, and customer experience solutions-all ... Analyze sales data, pipeline trends, and performance metrics to identify improvement opportunities ...
Liberty Lake, WA · On-site
$216K - $325K/yr
We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies ... Manage risk & compliance: Define telemetry, detection, and recovery strategies for firmware ...
Liberty Lake, WA · On-site
$216K - $325K/yr
We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies ... Manage risk & compliance: Define telemetry, detection, and recovery strategies for firmware ...
$140K - $160K/yr
... cybersecurity, networking, data center, collaboration, and customer experience solutions-all ... Analyze sales data, pipeline trends, and performance metrics to identify improvement opportunities ...
$140K - $160K/yr
... cybersecurity, networking, data center, collaboration, and customer experience solutions-all ... Analyze sales data, pipeline trends, and performance metrics to identify improvement opportunities ...
Spokane, WA · On-site
$140K - $160K/yr
... cybersecurity, networking, data center, collaboration, and customer experience solutions-all ... Analyze sales data, pipeline trends, and performance metrics to identify improvement opportunities ...
Spokane, WA · On-site
$140K - $160K/yr
... cybersecurity, networking, data center, collaboration, and customer experience solutions-all ... Analyze sales data, pipeline trends, and performance metrics to identify improvement opportunities ...
$43.5K - $53.3K
1% of jobs
$53.3K - $63.1K
6% of jobs
$63.1K - $73K
10% of jobs
$79.7K is the 25th percentile. Wages below this are outliers.
$73K - $82.8K
12% of jobs
$82.8K - $92.7K
15% of jobs
The median wage is $96.9K / yr.
$92.7K - $102.5K
15% of jobs
$102.5K - $112.3K
10% of jobs
$116.6K is the 75th percentile. Wages above this are outliers.
$112.3K - $122.2K
16% of jobs
$122.2K - $132K
7% of jobs
$132K - $141.8K
5% of jobs
$141.8K - $151.7K
3% of jobs
$43.5K
$100.5K
$151.7K
A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.
A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.
Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.

$80K - $165K/yr
Full-time
Medical, Dental, Vision, Life, Retirement, PTO
Posted 28 days ago
About the Role:
Responsible for leading Cybersecurity and IT governance, risk, and compliance efforts, including the establishment and maintenance of IT operating model and facilitating the development of technology policies and standards.
Maintain governance documentation detailing how information should be secured including the maintenance and development of internal process/procedure documentation including but are not limited to technology and cybersecurity policies and standards.
Perform formal risk analysis and self-assessments for technology processes, leveraging industry frameworks/standards like NIST CSF, FFIEC,CIS, ITIL, and COBIT to build a unique program for Columbia Bank.
Develop new andanalyze existing internal technology and security controls, to ensure compliance with documented and approved standards and frameworks. Ensure that information systems within environment comply with company policies, standards, and procedures.
Drive and provide advisory and subject-matter expertise to technology teams and business units for cybersecurity compliance readiness.
Responsible for tracking and monitoring gaps in the cybersecurity program. Maintain cybersecurity gap analysis documents; gather necessary information from technology and lines of business to identify areas to improve banking practices.
Manage end-to-end issue management activities, including intake, validation, prioritization, assignment, remediation tracking, and closure of GRC-related issues in ServiceNow, ensuring timely resolution, appropriate evidence, and alignment with audit, risk, and regulatory expectations.
Coordinate SOX IT Audit activities, serving as the primary liaison between audit (internal/external) and technology stakeholders to manage request intake, scope clarification, evidence collection, review, submission, issue tracking, status reporting to leadership and timely resolution in support of audit deadlines and control effectiveness.
Lead the process to identify new assets, perform the risk evaluation process to determine the risk ranking.
Facilitate and liaise with technology leaders, key corporate risk groups (including Internal Audit, External Audit,Corporate Compliance, Enterprise Risk Management, Legal) to ensure TAG is aligned with these groups and meeting obligations.
Demonstrates compliance with all bank regulations for assigned job function and applies to designated job responsibilities - knowledge may be gained through coursework and on-the-job training. Keeps up to date on regulation changes.
Follows all Bank policies and procedures, compliance regulations, and completes all required annual or job-specific training.
Maintain a working knowledge of Bank's written policies and procedures regarding Bank Secrecy Act, Regulation CC, Regulation E, Bank Security and other regulations as applicable to this job description.
May be asked to coach, mentor, or train others and teach coursework as subject matter expert.
Actively learns, demonstrates, and fosters the Columbia corporate culture in all actions and words.
Takes personal initiative and is a positive example for others to emulate.
Embraces our vision to become "Business Bank of Choice"
May perform other duties as assigned.
About You:
Bachelor's Degree in computer science or equivalent (preferred)
7-10 years - of experience in or a combination of information security, IT audit, or information technology operations. (Required)
ServiceNow IRM/GRC experience to design/optimize workflow, reporting and implementing new features
Knowledge of risk management processes including internal audit and information security management. Experience evaluating controls relative to information security frameworks such as ISO 27002, NIST 800 series, or financial services regulatory frameworks such as the FFIEC IT booklets and Cybersecurity Assessment Tool (CAT).
Knowledge of systems and network concepts including: access, authorization, configuration, and design.
Demonstrated understanding of information security concepts including: encryption, access controls, network security, security operations, security architect, threat modeling and design.
Knowledge of applicable regulatory requirements including PCI DSS, GLBA and HIPAA.
Ability to operate in a cross-functional environment, build, and foster relationships with other departments and stakeholders.
Ability to anticipate and respond to changing priorities and operate effectively in a dynamic demand-based environment, requiring extreme flexibility and responsiveness.
Travel Requirements
Occasional
The pay range for this role is $80,051.00 - $165,000.00.
The pay rate for the selected candidate is dependent upon a variety of non-discriminatory factors including, but not limited to, job-related knowledge, skills, and experience, education, and geographic location. The role may be eligible for performance-based incentive compensation, and those details will be provided during the recruitment process.
Primary Location: Ability to work fully onsite at posted location(s).
9285 NE Tanasbourne Drive Hillsboro OR 97124Our Benefits:
We are proud to offer a competitive total rewards package including base wages and comprehensive benefits.
We offer eligible associates comprehensive healthcare coverage (medical, dental, and vision plans), a 401(k)-retirement savings plan with employer match for qualifying associate contributions, an employee assistance program, life insurance, disability insurance, tuition assistance, mental health resources, identity theft protection, legal support, auto and home insurance, pet insurance, access to an online discount marketplace, and paid vacation, sick days, volunteer days, and holidays. Benefit eligibility begins the first day of the month following the date of hire for associates who are regularly scheduled to work at least thirty hours weekly.
Our Commitment to Diversity:
Columbia Bank is an equal opportunity and affirmative action employer committed to employing, engaging, and developing a diverse workforce. All qualified applicants will receive consideration for employment without regard to race, color, national origin, religion, sex, age, sexual orientation, gender identity, gender expression, protected veteran status, disability, or any other applicable protected status or characteristics. If you require an accommodation to complete the application or interview(s), please let us know by email: careers@columbiabank.com.
To Staffing and Recruiting Agencies:
Our posted job opportunities are only intended for individuals seeking employment at Columbia Bank. Columbia Bank does not accept unsolicited resumes or applications from agencies and Columbia Bank will not be responsible for any fees related to unsolicited resume submissions. Staffing and recruiting agencies are not authorized to submit profiles, applications, or resumes to this site or to any Columbia Bank employee and any such submissions will be considered unsolicited unless requested directly by a member of the Talent Acquisition team.