The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm's governance, risk, and compliance program, including leading certification initiatives ...
The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm's governance, risk, and compliance program, including leading certification initiatives ...
The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm's governance, risk, and compliance program, including leading certification initiatives ...
The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm's governance, risk, and compliance program, including leading certification initiatives ...
Role Description As a Senior Governance & Risk Compliance Program Manager on the Governance, Risk ... Executive communication and stakeholder management skills - Proven ability to distill complex ...
Role Description As a Senior Governance & Risk Compliance Program Manager on the Governance, Risk ... Executive communication and stakeholder management skills - Proven ability to distill complex ...
Sr. Director, Governance, Risk, and Compliance (GRC)
Seattle, WA · On-site
$221K - $365K/yr
Success requires strong executive presence, deep GRC expertise, and a serviceoriented mindset ... Lead governance, risk, and compliance programs that enable secure growth while maintaining ...
Sr. Director, Governance, Risk, and Compliance (GRC)
Seattle, WA · On-site
$221K - $365K/yr
Success requires strong executive presence, deep GRC expertise, and a serviceoriented mindset ... Lead governance, risk, and compliance programs that enable secure growth while maintaining ...
The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm's governance, risk, and compliance program, including leading certification initiatives ...
The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm's governance, risk, and compliance program, including leading certification initiatives ...
The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm's governance, risk, and compliance program, including leading certification initiatives ...
The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm's governance, risk, and compliance program, including leading certification initiatives ...
$72/hr
AI Risk & Compliance Analyst Location: New York, NY or Charlotte, NC Duration: 6-Month Contract ... Experience creating governance dashboards, executive reporting, KPIs, and operational metrics.
Quick apply
$72/hr
AI Risk & Compliance Analyst Location: New York, NY or Charlotte, NC Duration: 6-Month Contract ... Experience creating governance dashboards, executive reporting, KPIs, and operational metrics.
The Director, IT Governance, Risk, and Compliance is a senior leadership role in the Technology ... Service Delivery & IT Operations: * Provide executive oversight of IT service delivery across all ...
The Director, IT Governance, Risk, and Compliance is a senior leadership role in the Technology ... Service Delivery & IT Operations: * Provide executive oversight of IT service delivery across all ...
As part of the OCIO, the IT Governance, Risk, and Compliance (GRC) team's mission is to drive IT risk management and compliance strategy, capabilities, and deliverables across the organization. Our ...
As part of the OCIO, the IT Governance, Risk, and Compliance (GRC) team's mission is to drive IT risk management and compliance strategy, capabilities, and deliverables across the organization. Our ...
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT ... Governance, Risk and Compliance
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT ... Governance, Risk and Compliance
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT ... Governance, Risk and Compliance
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT ... Governance, Risk and Compliance
Role Overview As Governance, Risk & Compliance (GRC) Lead, you will own Northwood's compliance ... Brief executive leadership and the Head of Security on compliance status, upcoming assessment ...
Role Overview As Governance, Risk & Compliance (GRC) Lead, you will own Northwood's compliance ... Brief executive leadership and the Head of Security on compliance status, upcoming assessment ...
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT ... Governance, Risk and Compliance
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT ... Governance, Risk and Compliance
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional whose primary responsibility is to design, operate, and continuously mature the organization ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional whose primary responsibility is to design, operate, and continuously mature the organization ...
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT ... Governance, Risk and Compliance
Atlanta Georgia IT Recruiters, Austin TX IT Recruiters, Baltimore Executive Staffing, Boston IT ... Governance, Risk and Compliance
Junior Governance, Risk & Compliance Analyst
Davenport, IA · On-site
$20/hr
Lee Enterprises is seeking a motivated Junior GRC Analyst to join our growing Governance, Risk & Compliance (GRC) team. This part-time, developmental position offers an opportunity to gain direct ...
Junior Governance, Risk & Compliance Analyst
Davenport, IA · On-site
$20/hr
Lee Enterprises is seeking a motivated Junior GRC Analyst to join our growing Governance, Risk & Compliance (GRC) team. This part-time, developmental position offers an opportunity to gain direct ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional whose primary responsibility is to design, operate, and continuously mature the organization's Third ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional whose primary responsibility is to design, operate, and continuously mature the organization's Third ...
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional whose primary responsibility is to design, operate, and continuously mature the organization ...
Quick apply
The Senior Cyber Governance, Risk & Compliance Analyst is a senior level security professional whose primary responsibility is to design, operate, and continuously mature the organization ...
They are seeking an experienced Governance, Risk, and Compliance (GRC) team member to ensure compliance with regulatory and ethical standards while collaborating with teams to support AI development ...
They are seeking an experienced Governance, Risk, and Compliance (GRC) team member to ensure compliance with regulatory and ethical standards while collaborating with teams to support AI development ...
We are seeking an experienced and strategic Governance, Risk, and Compliance (GRC) team member as we expand into government and public sector applications of AI. This critical role will ensure that ...
We are seeking an experienced and strategic Governance, Risk, and Compliance (GRC) team member as we expand into government and public sector applications of AI. This critical role will ensure that ...
Executive Governance Risk Compliance information
See salary details
$31.5K - $47.5K
10% of jobs
$60.4K is the 25th percentile. Wages below this are outliers.
$47.5K - $63.5K
19% of jobs
$63.5K - $79.5K
19% of jobs
The median wage is $81.5K / yr.
$79.5K - $95.5K
17% of jobs
$106.4K is the 75th percentile. Wages above this are outliers.
$95.5K - $111.5K
15% of jobs
$111.5K - $127.5K
6% of jobs
$127.5K - $143.5K
5% of jobs
$143.5K - $159.5K
3% of jobs
$159.5K - $175.5K
2% of jobs
$175.5K - $191.5K
2% of jobs
$191.5K - $207.5K
1% of jobs
$31.5K
$98.9K
$207.5K
How much do executive governance risk compliance jobs pay per year?
What is the difference between Executive Governance Risk Compliance vs Governance Risk Compliance?
| Aspect | Executive Governance Risk Compliance | Governance Risk Compliance |
|---|---|---|
| Certifications | CRISC, CISA, CGRC | CRISC, CISA, CGRC |
| Work Environment | Senior leadership, strategic planning | Operational teams, compliance departments |
| Employer & Industry | Corporations, financial institutions, large enterprises | Organizations with compliance and risk management needs |
Executive Governance Risk Compliance roles focus on strategic oversight and decision-making at the leadership level, while Governance Risk Compliance positions are more operational, implementing policies and managing day-to-day compliance activities. Both roles require similar certifications and are integral to organizations' risk management frameworks, but they differ in scope and responsibility.

Full-time
Posted just now
Job description
Andersen is a leading professional services organization specializing in Tax, Valuation, and Business Advisory. The Senior Manager, Governance Risk & Compliance (GRC) will be responsible for building and overseeing the firm’s governance, risk, and compliance program, including leading certification initiatives and developing risk management policies.
Responsibilities:
• Lead end-to-end certification programs for SOC 2 Type II and ISO 27001 simultaneously, from scoping through audit closure
• Define control environments, manage evidence collection, and serve as the primary liaison with external auditors and certification bodies
• Administer the firm’s compliance automation platform and maintain continuous control monitoring and audit readiness
• Manage both programs through their full lifecycle, including observation periods, annual renewals, surveillance audits, and ISO recertification cycles
• Develop and maintain a comprehensive information security policy suite aligned to SOC 2, ISO 27001, and applicable regulatory requirements, with defined processes for ownership, annual review, and exception management
• Build and maintain an enterprise risk register using structured methodology (e.g., ISO 27005, NIST CSF) and lead annual and ad hoc risk assessments
• Communicate risk posture and policy compliance to the CISO and, where appropriate, to firm leadership and clients
• Develop and maintain an AI governance policy covering acceptable use of AI tools, agentic system deployments, and citizen developer activity, ensuring alignment with the firm’s risk appetite and applicable regulatory requirements
• Serve as the firm’s subject matter expert on GDPR, CCPA, and other applicable privacy and data protection requirements
• Monitor evolving regulatory obligations globally and translate them into actionable compliance programs
• Partner with Legal and Operations on data subject requests, privacy impact assessments, and breach notification procedures
• Advise the CISO on emerging compliance obligations relevant to a global professional services firm
• Design and operate the firm’s third-party risk management program, including vendor tiering, security assessments, and remediation tracking
• Manage the firm’s response program for client security questionnaires and due diligence requests
• Maintain a library of certification-aligned response language and track contractual security commitments across vendors and clients
• Own the firm’s security awareness program, including curriculum design, platform administration, and completion tracking
• Develop role-specific content for high-risk populations and keep training current against the evolving threat landscape
• Develop and maintain training content addressing AI-related threats and responsible AI use, including risks from unsanctioned AI tools, citizen developer activity, and AI agents operating with access to firm data and systems
• Track and report program effectiveness to the CISO on a regular cadence
• Build collaborative relationships across Legal, IT, Operations, Audit, and client-facing teams to embed security and compliance into firm workflows
• Represent the information security function in client-facing conversations regarding the firm’s security posture
Qualifications:
Required:
• 8–12 years of progressive experience in information security GRC, with a demonstrated record of building programs, not just maintaining them
• Bachelor’s degree in Information Security, Computer Science, Risk Analysis, or a related field
• Proven track record achieving and sustaining both SOC 2 Type II and ISO 27001 certifications, including scoping, control design, ISMS development, and auditor relationship management
• Operational knowledge of GDPR and CCPA, including hands-on implementation of compliance obligations
• Experience designing and operating third-party risk management programs
• Experience managing client security due diligence and responding to security questionnaires at scale
• Ability to build defensible, auditable policy frameworks and maintain structured enterprise risk registers
• Proficiency with GRC or compliance automation platforms
• Strong written and verbal communication skills, with the ability to translate technical risk into business language for non-technical audiences
• Understanding of the security and governance risks introduced by AI systems, including large language models, AI agents, and citizen developer platforms, and the ability to translate those risks into policy, training content, and risk register entries
Preferred:
• Relevant certification such as CISA, CISM, or CRISC
• Background in professional services or consulting, where security posture is tied directly to client trust
• Familiarity with international privacy frameworks such as NDPA or DPDPA
• Working knowledge of the NIST Cybersecurity Framework as a risk management overlay
• Familiarity with AI governance frameworks such as NIST AI RMF, the EU AI Act, or ISO 42001, and awareness of emerging regulatory obligations affecting AI use in global professional services environments
• Experience managing or mentoring junior GRC staff
Company:
Andersen is the founding member of Andersen Global, an international association of legally separate, independent member firms with more than 50,000 professionals worldwide, over 3,000 global partners, and a presence in over 1,000 locations in more than 180 countries worldwide. Founded in , the company is headquartered in San Francisco, CA, US, , with a team of 1001-5000 employees. The company is currently Late Stage.