1

Governance Risk And Compliance Jobs (NOW HIRING)

next page

Showing results 1-20

Governance Risk And Compliance information

See salary details

$99K

$191.8K

$384K

How much do governance risk and compliance jobs pay per year?

As of Jun 30, 2026, the average yearly pay for governance risk and compliance in the United States is $191,763.00, according to ZipRecruiter salary data. Most workers in this role earn between $168,500.00 and $190,500.00 per year, depending on experience, location, and employer.

What are Governance, Risk, and Compliance (GRC) roles?

Governance, Risk, and Compliance (GRC) roles are positions within organizations focused on ensuring that business operations align with legal standards, manage risk effectively, and follow internal policies. Professionals in GRC help organizations set up frameworks to oversee compliance with laws and regulations, identify and mitigate potential risks, and establish governance structures to guide decision-making. These roles are essential for protecting organizations from financial, legal, and reputational harm while promoting ethical practices and efficient processes.

What are governance risk and compliance jobs?

Governance, Risk, and Compliance (GRC) jobs involve managing an organization’s policies, procedures, and controls to ensure legal and regulatory adherence, mitigate risks, and support corporate governance. These roles often require knowledge of industry standards, risk assessment tools, and compliance frameworks such as ISO, GDPR, or SOX, and may involve audits, policy development, and risk analysis. GRC professionals help organizations maintain integrity, reduce vulnerabilities, and meet compliance requirements.

Is governance risk and compliance a good career?

Governance, Risk, and Compliance (GRC) is a growing field that offers opportunities in industries such as finance, healthcare, and technology. It requires skills in regulatory knowledge, risk assessment, and often involves working with compliance tools and frameworks like ISO or GDPR. The role can provide stable employment and career advancement for those with strong analytical and organizational skills.

What are the key skills and qualifications needed to thrive as a Governance, Risk, and Compliance (GRC) professional, and why are they important?

To thrive as a Governance, Risk, and Compliance (GRC) professional, you need a solid understanding of regulatory frameworks, risk assessment methodologies, and compliance requirements, often supported by a degree in business, finance, or a related field. Familiarity with GRC platforms (like RSA Archer or MetricStream), audit management tools, and relevant certifications such as CISA, CRISC, or CISSP is highly beneficial. Strong analytical thinking, attention to detail, and effective communication skills set top performers apart in this field. These skills are crucial for identifying risks, ensuring organizational compliance, and supporting informed decision-making to protect the business.

What are the careers in GRC?

Careers in Governance, Risk, and Compliance (GRC) include roles such as GRC analyst, compliance officer, risk manager, and internal auditor. These positions typically require knowledge of regulations, risk assessment, and often involve using tools like GRC software to ensure organizational compliance and security.

What is the salary of governance risk compliance?

The salary for Governance, Risk, and Compliance (GRC) professionals varies based on experience, location, and industry, but typically ranges from $70,000 to $130,000 annually. Entry-level roles may start around $60,000, while senior positions with certifications like CISA or CRISC can earn over $150,000. Skills in risk management, compliance frameworks, and familiarity with tools like GRC software are often required.

What are some common challenges faced by professionals in Governance, Risk, and Compliance (GRC) roles, and how can they be addressed?

Professionals in Governance, Risk, and Compliance (GRC) roles often face challenges such as staying updated with changing regulations, ensuring company-wide adherence to policies, and managing cross-functional collaboration. To address these, GRC specialists must develop strong communication skills to educate and train staff, leverage technology to automate compliance tracking, and build effective relationships with departments such as IT, legal, and operations. Regular professional development and proactive engagement with regulatory updates are also key to overcoming these challenges and maintaining effective governance.

What is the difference between Governance Risk And Compliance vs Compliance Analyst?

AspectGovernance Risk And ComplianceCompliance Analyst
CertificationsISO 31000, ISO 27001, Certified Risk Management ProfessionalCertified Compliance & Ethics Professional (CCEP), ISO 19600
Work EnvironmentCorporate, regulated industries, risk management departmentsLegal, audit, compliance departments within organizations
Employer & Industry UsageFinancial services, healthcare, energy, governmentFinancial institutions, healthcare, manufacturing, retail

Governance Risk And Compliance professionals focus on establishing frameworks, managing risks, and ensuring overall compliance strategies across organizations. Compliance Analysts primarily focus on implementing and monitoring specific compliance policies, often within legal or audit teams. While both roles require understanding regulations and certifications, Governance Risk And Compliance roles have a broader scope involving risk management and governance structures.

More about Governance Risk And Compliance jobs
What cities are hiring for Governance Risk And Compliance jobs? Cities with the most Governance Risk And Compliance job openings:
What states have the most Governance Risk And Compliance jobs? States with the most job openings for Governance Risk And Compliance jobs include:
Infographic showing various Governance Risk And Compliance job openings in the United States as of June 2026, with employment types broken down into 78% Full Time, 21% Part Time, and 1% Contract. Highlights an 94% Physical, 2% Hybrid, and 4% Remote job distribution, with an average salary of $191,763 per year, or $92.2 per hour.
Director, Governance, Risk & Compliance

Director, Governance, Risk & Compliance

Infoblox, Inc.

Tacoma, WA • On-site

Full-time

Medical, Retirement, PTO

Posted 21 days ago


Job description


At Infoblox, every breakthrough begins with a bold "what if."
What if your ideas could ignite global innovation?
What if your curiosity could redefine the future?
We invite you to step into the next exciting chapter of your career journey. Bring your creativity, drive, your daring spirit, and feel what it's like to thrive on a team big enough to make an impact, yet small enough to make a difference. Our cloud-first networking and security solutions already protect 70% of the Fortune 500, and we're looking for creative thinkers ready to push that influence even further. Join us and discover how far your bold "what if" can take the world, your community, and your career.
How we empower our people is extraordinary: we're recognized as a Glassdoor Best Place to Work 2025, Great Place to Work-Certified in five countries, and honored by Cigna as a Healthy Workforce honors for three consecutive years; and what we build is world class: named CybersecAsia's Best in Critical Infrastructure 2024 - clear evidence that when first-class technology meets empowered talent, remarkable careers take shape. So, what if the next big idea, and the next great career story, comes from you? Become the force that turns every "what if" into "what's next."
In a world where you can be anything, Be Infoblox.
Director, Governance, Risk & Compliance
We have an opportunity for a Director, GRC to join our Information Security team based in Tacoma, WA, reporting to the Chief Information Security Officer. In this pivotal role, you will lead the programs, controls, and team that keep Infoblox secure, audit-ready, and trusted by customers as we scale and prepare for life as a public company. Collaborating closely with Security Operations, Architecture, FedRAMP, Product and Engineering, Finance, and our RFX and customer-facing teams, you will own policy, user education, risk management, audit and certification, SOX IT general controls (ITGC), customer trust, vendor assurance, and business continuity/disaster recovery for the enterprise. You will also drive a multi-year automation and AI roadmap that makes our GRC function more scalable, data-driven, and integrated into how Infoblox works every day.
Be a Contributor - What You'll Do
  • Lead and mature the enterprise GRC program across policy, risk, audit, certifications, SOX ITGC, and customer/vendor assurance, ensuring a scalable and effective control environment
  • Own the GRC automation strategy and roadmap, designing workflow automation, AI-enabled processes, and continuous control monitoring that reduce manual effort and improve control quality and transparency
  • Oversee security policy, user education, phishing simulations, and awareness programs, using automation to strengthen engagement and follow-through
  • Lead internal and external audits for SOC 2 and ISO certifications, coordinating evidence collection, remediation, and stakeholder alignment
  • Drive SOX ITGC compliance with Finance and IT, aligning controls, testing, documentation, and automation to support public-company readiness
  • Lead enterprise risk assessments using ISO and NIST frameworks, maintaining risk registers, treatment plans, and scalable reporting processes
  • Manage customer trust activities, including security questionnaires, RFX support, trust portal content, and third-party risk for key vendors and providers
  • Implement and optimize GRC tooling such as ServiceNow GRC and AuditBoard to support integrated workflows, control mapping, metrics, and executive visibility
  • Lead and mentor a distributed GRC team while partnering cross-functionally to embed security, compliance, and scalable control practices across the business
  • Drive continuous improvement through strong documentation, metrics, exception management, remediation tracking, and expanded use of AI and automation across GRC operations

Be Prepared - What You'll Bring
  • 15+ years of experience in governance, risk, and compliance and/or information security and risk management, with direct ownership of controls, audits, and enterprise compliance programs
  • Functional knowledge of CISSP security domains and information security industry standards and best practices; CISSP preferred
  • Strong understanding of applicable security regulatory requirements such as SOX and GDPR, including IT general controls
  • Functional knowledge of ISMS governance models and frameworks such as ISO 27001, NIST CSF, and CAIQ, as well as common security certifications such as SOC 2, ISO 27017/27018, and ISO 42001
  • Demonstrated experience defining, developing, implementing, assessing, and scaling controls and risk management programs, with a strong track record of leading automation initiatives and applying AI to accelerate GRC processes
  • Proven ability to evaluate manual processes, design more efficient operating models, and implement automation that improves quality, consistency, and team capacity
  • Hands-on experience with GRC platforms and workflow tooling such as ServiceNow GRC, AuditBoard, or similar solutions, including configuration and optimization of automated workflows, automatic evidence gathering, gen-AI tooling, and reporting
  • IT audit background with strong project management and organizational skills; able to work in a fast-paced, ambiguous environment while meeting objectives and deadlines
  • Ability to communicate risk methodologies, compliance priorities, and security concepts clearly to business stakeholders, with strong attention to detail, accuracy, integrity, security, and confidentiality
  • Bachelor's degree in a relevant field such as Computer Science, Information Systems, Engineering, or Business, or equivalent practical experience; familiarity with FedRAMP certifications is a plus

Be Successful - Your Path
First 90 Days: Immerse in our culture, connect with mentors (Blox Buddies), and map the systems and meet with key stakeholders that rely on your work. Discuss and create short/long term goals.
Six Months: Assess the current GRC operating model and identify the highest-impact opportunities to simplify and scale core processes. Introduce and expand the use of gen-AI tooling to improve efficiency, reduce manual effort, and accelerate repeatable GRC activities. Drive automation across key GRC workflows, including controls management, evidence collection, issue tracking, and reporting.
One Year: Demonstrate a measurable improvement in our risk posture, SOX ITGC readiness, and customer/vendor assurance efficiency; solidify a high-performing GRC team across Tacoma and Bangalore; and establish a sustainable roadmap for scaling policy, education, audit, risk, and BCDR as Infoblox grows.
Belong - Your Community
Our culture thrives on inclusion, rewarding the bold ideas, curiosity, and creativity that move us forward. In a community where every voice counts, continuous learning is the norm. So, whether you code, create, sell, or care for customers, you'll grow and belong here.
Be Rewarded - Benefits That Help You Grow, Thrive, Belong
  • Comprehensive health coverage, generous PTO, and flexible work options
  • Learning opportunities, career-mobility programs, and leadership workshops
  • Sixteen paid volunteer hours each year, global employee resource groups, and a "No Jerks" policy that keeps collaboration healthy
  • Modern offices with EV charging, healthy snacks (and the occasional cupcake), plus hackathons, game nights, and culture celebrations
  • Charitable Giving Program supported by Company Match
  • We practice pay transparency and reward performance. Offers reflect role location, internal equity, experience, skills, education, and certifications. Base salary for this position: $159,000 - $244,860 plus corporate bonus potential

Ready to Be the Difference?
Infoblox is an Affirmative Action and Equal Opportunity Employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, national origin, genetic information, age, disability, veteran status, or any other legally protected basis
#LI-MA1
#LI-Hybrid