2

Entry Level Cyber Security Governance Jobs (NOW HIRING)

Soc Analyst

Charlotte, NC · On-site

$33/hr

... or governance. Essential Duties: • Monitor alerts from SIEM, EDR, email, firewall, and DNS ... Incident response,Cyber security,Security operations,Threat hunting Additional Skills ...

This entry-level role is ideal for a self-motivated individual eager to learn the complexities of ... governance. Administrative and Programmatic Support * Executive Support: Provide direct ...

Dive into innovation in Digital Transformation, Cybersecurity, IT, Data Analytics and Software ... Framework Support: Assist in deploying and maintaining enterprise-level governance frameworks for ...

This entry-level role is ideal for a self-motivated individual eager to learn the complexities of ... governance. Administrative and Programmatic Support * Executive Support: Provide direct ...

next page

Showing results 1-20

Entry Level Cyber Security Governance information

See salary details

$57K

$133K

$186K

How much do entry level cyber security governance jobs pay per year?

As of Jul 4, 2026, the average yearly pay for entry level cyber security governance in the United States is $132,962.00, according to ZipRecruiter salary data. Most workers in this role earn between $111,000.00 and $150,000.00 per year, depending on experience, location, and employer.

How can I get a job in cybersecurity with no experience?

Entry level cybersecurity governance roles often require foundational knowledge of security principles, which can be gained through self-study, online courses, or certifications like CompTIA Security+ or CISSP. Gaining hands-on experience through internships, volunteering, or lab environments helps demonstrate skills to employers, even without prior work experience.

What is the role of governance in cyber security?

In an entry level cyber security governance role, governance involves establishing policies, standards, and procedures to manage and mitigate security risks across an organization. It ensures compliance with regulations, aligns security efforts with business objectives, and provides oversight through audits and reporting. Strong governance helps create a security-aware culture and supports the implementation of security frameworks and tools like risk assessments and security audits.

Is 25 too late for cyber security?

Entry level cyber security governance roles are open to individuals of various ages, including those starting a career at 25 or later. Success depends on acquiring relevant skills, certifications like CompTIA Security+ or CISSP, and gaining practical experience through training or internships, regardless of age.

Is grc an entry level job?

GRC (Governance, Risk, and Compliance) roles can be entry level, especially for positions focused on policy, documentation, and basic compliance tasks. However, more advanced GRC roles often require prior experience or certifications like CISSP or CISA. Entry level positions typically involve supporting senior staff and learning industry standards and tools.

What is the difference between Entry Level Cyber Security Governance vs Entry Level Cyber Security Risk Analyst?

AspectEntry Level Cyber Security GovernanceEntry Level Cyber Security Risk Analyst
CertificationsCompTIA Security+, CISSP (entry-level), CISA (entry-level)CompTIA Security+, CISSP (entry-level), CISA (entry-level)
Work EnvironmentPolicy development, compliance monitoring, security frameworksRisk assessment, vulnerability analysis, threat evaluation
Employer & Industry UsageOrganizations implementing security policies, compliance teamsOrganizations assessing and managing security risks, security teams

Entry Level Cyber Security Governance focuses on establishing and maintaining security policies, ensuring compliance, and implementing security frameworks. In contrast, Entry Level Cyber Security Risk Analyst primarily assesses vulnerabilities, analyzes threats, and evaluates risks to inform security strategies. Both roles require similar certifications and often work within the same organizations, but their core responsibilities differ in scope and focus.

More about Entry Level Cyber Security Governance jobs
What cities are hiring for Entry Level Cyber Security Governance jobs? Cities with the most Entry Level Cyber Security Governance job openings:
What are the most commonly searched types of Cyber Security Governance jobs? The most popular types of Cyber Security Governance jobs are:
What states have the most Entry Level Cyber Security Governance jobs? States with the most job openings for Entry Level Cyber Security Governance jobs include:
What job categories do people searching Entry Level Cyber Security Governance jobs look for? The top searched job categories for Entry Level Cyber Security Governance jobs are:
Infographic showing various Entry Level Cyber Security Governance job openings in the United States as of June 2026, with employment types broken down into 99% Full Time, and 1% Contract. Highlights an 82% Physical, 7% Hybrid, and 11% Remote job distribution, with an average salary of $132,962 per year, or $63.9 per hour.
Information Security - Risk & Compliance Analyst

Information Security - Risk & Compliance Analyst

Victaulic

Easton, PA • On-site

Full-time

Posted 23 days ago


Victaulic rating

7.1

Company rating: 7.1 out of 10

Based on 34 frontline employees who took The Breakroom Quiz

363rd of 527 rated manufacturers


Job description

Job Description
The Security Risk & Compliance Analyst supports the organizations global information security program by assisting in the identification, assessment, and management of information security risks and compliance demands across Victaulic's entire organization. This position plays an integral role in ensuring the company meets its obligations under domestic and international regulatory frameworks, including but not limited to, NIST CSF, ISO27001, CMMC and the EU's NIS2 Directive. The analyst will work closely with internal stakeholders, external auditors, and third-party vendors to support a culture of security awareness and continuous compliance improvement.
The ideal candidate for this role will have knowledge of, if not actual experience, in the processes of obtaining and maintaining compliance with security frameworks as well as an understanding of industry standard Information Technology auditing.
Responsibilities
Risk Assessment & Management
• Assist in conducting information security risk assessments across business units, systems, and processes in accordance with established methodologies.
• Document risk findings, assign risk ratings, and track remediation activities through the risk register.
• Support the development and maintenance of risk treatment plans in coordination with system owners and IT teams.
• Participate in annual and ad hoc enterprise risk reviews, contributing analysis and supporting materials.
Compliance & Framework Management
• Support compliance activities related to NIST Cybersecurity Framework (CSF), ISO/IEC 27001, CMMC (Cybersecurity Maturity Model Certification), and the EU NIS2 Directive.
• Conduct gap analyses against applicable frameworks and assist in developing remediation roadmaps.
• Maintain compliance documentation, including policies, procedures, control evidence, and assessment reports.
• Monitor regulatory changes and emerging framework updates; summarize implications for the security program.
Third-Party & Audit Management
• Coordinate and support third-party security audits and assessments, including scheduling, evidence collection, and stakeholder communication.
• Assist in managing vendor risk assessments for new and existing third-party vendors and suppliers.
• Track audit findings and corrective action plans, ensuring timely remediation and closure.
• Serve as a liaison between internal teams and external auditors during certification audits.
Policy, Documentation & Awareness
• Assist in drafting, reviewing, and updating information security policies, standards, and procedures.
• Support the delivery of security awareness training and phishing simulation programs.
• Maintain organized records of all compliance and risk management activities in the Governance, Risk & Compliance platform.
Collaboration & Reporting
• Collaborate with IT, Legal, Operations, and other business functions to integrate security requirements into business processes.
• Prepare regular status reports and metrics dashboards for management review.
• Contribute to the continuous improvement of the information security program by identifying process gaps and recommending enhancements.
Qualifications
Technical Experience
• Foundational understanding of information security principles, including confidentiality, integrity, and availability (CIA).
• Basic understanding of risk assessment methodologies and risk management concepts.
• Familiarity with third-party risk management and audit processes.
• Strong analytical and problem-solving skills with attention to detail.
• Capacity to understand legacy and progressive technology and security controls along with respective risk.
• Working knowledge of technologies such as cloud computing, DevOps, and application security is required.
General Requirements
• Analytical Thinking - applies structured reasoning to evaluate risk and compliance data objectively
• Integrity & Accountability - Handles sensitive security information with discretion and professionalism.
• Communication - Clearly translates security requirements and findings for varied audiences across the organization
• Continuous Learning - Proactively keeps pace with evolving security frameworks, threats, and regulatory requirements
• Collaboration - Builds effective working relationships across IT, operations, and business functions globablly
• Detail Orientation - Produces thorough, accurate documentation and maintains meticulous records of compliance activities
Education & Certifications
• 0 - 2 years' experience in information security, IT audit, risk management, or a related field.
• Bachelor's degree, cybersecurity certification, or equivalent experience in an information security or related field.
• A minimum of an entry-level certification such as the CompTIA Security+ certification
• Additional Risk & Compliance certification(s), such as CISA, a plus
Work Environment & Physical Requirements
This position is primarily office-based with hybrid flexibility. The role may require occasional visits to manufacturing facilities domestically and internationally. Ability to work across global time zones may be required for coordination with European and Asian teams.
Victaulic is an Equal Employment Opportunity (EOE/M/F/Vets/Disabled) employer and welcomes all qualified applicants. Applicants will receive fair and impartial consideration without regard to race, gender, color, religion, national origin, age, disability, veteran status, sexual orientation, genetic data, or other legally protected status. (Background checks may be required as part of our pre-employment process).

What Victaulic employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom