1

Governance Risk And Compliance Jobs (NOW HIRING)

Execute FISMA compliance activities * Validate technical controls in AWS environments * Conduct security and risk assessments * Collaborate with Engineering, DevOps, and Security teams Required ...

next page

Showing results 1-20

Governance Risk And Compliance information

See salary details

$99K

$191.8K

$384K

How much do governance risk and compliance jobs pay per year?

As of Jun 30, 2026, the average yearly pay for governance risk and compliance in the United States is $191,763.00, according to ZipRecruiter salary data. Most workers in this role earn between $168,500.00 and $190,500.00 per year, depending on experience, location, and employer.

What are Governance, Risk, and Compliance (GRC) roles?

Governance, Risk, and Compliance (GRC) roles are positions within organizations focused on ensuring that business operations align with legal standards, manage risk effectively, and follow internal policies. Professionals in GRC help organizations set up frameworks to oversee compliance with laws and regulations, identify and mitigate potential risks, and establish governance structures to guide decision-making. These roles are essential for protecting organizations from financial, legal, and reputational harm while promoting ethical practices and efficient processes.

What are governance risk and compliance jobs?

Governance, Risk, and Compliance (GRC) jobs involve managing an organization’s policies, procedures, and controls to ensure legal and regulatory adherence, mitigate risks, and support corporate governance. These roles often require knowledge of industry standards, risk assessment tools, and compliance frameworks such as ISO, GDPR, or SOX, and may involve audits, policy development, and risk analysis. GRC professionals help organizations maintain integrity, reduce vulnerabilities, and meet compliance requirements.

Is governance risk and compliance a good career?

Governance, Risk, and Compliance (GRC) is a growing field that offers opportunities in industries such as finance, healthcare, and technology. It requires skills in regulatory knowledge, risk assessment, and often involves working with compliance tools and frameworks like ISO or GDPR. The role can provide stable employment and career advancement for those with strong analytical and organizational skills.

What are the key skills and qualifications needed to thrive as a Governance, Risk, and Compliance (GRC) professional, and why are they important?

To thrive as a Governance, Risk, and Compliance (GRC) professional, you need a solid understanding of regulatory frameworks, risk assessment methodologies, and compliance requirements, often supported by a degree in business, finance, or a related field. Familiarity with GRC platforms (like RSA Archer or MetricStream), audit management tools, and relevant certifications such as CISA, CRISC, or CISSP is highly beneficial. Strong analytical thinking, attention to detail, and effective communication skills set top performers apart in this field. These skills are crucial for identifying risks, ensuring organizational compliance, and supporting informed decision-making to protect the business.

What are the careers in GRC?

Careers in Governance, Risk, and Compliance (GRC) include roles such as GRC analyst, compliance officer, risk manager, and internal auditor. These positions typically require knowledge of regulations, risk assessment, and often involve using tools like GRC software to ensure organizational compliance and security.

What is the salary of governance risk compliance?

The salary for Governance, Risk, and Compliance (GRC) professionals varies based on experience, location, and industry, but typically ranges from $70,000 to $130,000 annually. Entry-level roles may start around $60,000, while senior positions with certifications like CISA or CRISC can earn over $150,000. Skills in risk management, compliance frameworks, and familiarity with tools like GRC software are often required.

What are some common challenges faced by professionals in Governance, Risk, and Compliance (GRC) roles, and how can they be addressed?

Professionals in Governance, Risk, and Compliance (GRC) roles often face challenges such as staying updated with changing regulations, ensuring company-wide adherence to policies, and managing cross-functional collaboration. To address these, GRC specialists must develop strong communication skills to educate and train staff, leverage technology to automate compliance tracking, and build effective relationships with departments such as IT, legal, and operations. Regular professional development and proactive engagement with regulatory updates are also key to overcoming these challenges and maintaining effective governance.

What is the difference between Governance Risk And Compliance vs Compliance Analyst?

AspectGovernance Risk And ComplianceCompliance Analyst
CertificationsISO 31000, ISO 27001, Certified Risk Management ProfessionalCertified Compliance & Ethics Professional (CCEP), ISO 19600
Work EnvironmentCorporate, regulated industries, risk management departmentsLegal, audit, compliance departments within organizations
Employer & Industry UsageFinancial services, healthcare, energy, governmentFinancial institutions, healthcare, manufacturing, retail

Governance Risk And Compliance professionals focus on establishing frameworks, managing risks, and ensuring overall compliance strategies across organizations. Compliance Analysts primarily focus on implementing and monitoring specific compliance policies, often within legal or audit teams. While both roles require understanding regulations and certifications, Governance Risk And Compliance roles have a broader scope involving risk management and governance structures.

More about Governance Risk And Compliance jobs
What cities are hiring for Governance Risk And Compliance jobs? Cities with the most Governance Risk And Compliance job openings:
What states have the most Governance Risk And Compliance jobs? States with the most job openings for Governance Risk And Compliance jobs include:
Infographic showing various Governance Risk And Compliance job openings in the United States as of June 2026, with employment types broken down into 78% Full Time, 21% Part Time, and 1% Contract. Highlights an 94% Physical, 2% Hybrid, and 4% Remote job distribution, with an average salary of $191,763 per year, or $92.2 per hour.
Governance, Risk & Compliance Analyst

Governance, Risk & Compliance Analyst

University of Nebraska

Lincoln, NE • On-site

Full-time

Retirement, PTO

Posted 2 days ago


Key responsibilities

  • Assess and document the University's compliance and risk posture related to Research information assets.

  • Collaborate with campus research entities to review and ensure compliance with regulatory standards such as NIST 800-171, CMMC, and DFARS.

  • Develop and maintain cybersecurity control documentation in accordance with cybersecurity standards.


University Of Nebraska rating

7.2

Company rating: 7.2 out of 10

Based on 71 frontline employees who took The Breakroom Quiz

337th of 544 rated colleges and universities


Job description

Job Summary:
The Governance, Risk, and Compliance Analyst (GRC Analyst) will serve as a key member of the Research IT team at the University of Nebraska. The GRC Analyst for Research is responsible for the assessment and documentation of the University's compliance and risk posture as they relate to its Research information assets. The person in this position will focus on collaboration, review, and compliance with regulatory standards by campus research entities. The regulatory standards include, but are not limited to, NIST 800-171, CMMC, and DFARS.
Responsible for developing and maintaining cybersecurity control documentation and complying with cybersecurity standards.
This position will uphold the ITS core principles of outstanding collaboration and communication, a drive to succeed, a passion for higher learning, and acting with integrity.
Additional Info
About Us:
University of Nebraska employees enjoy a flexible benefits program allowing you to customize your benefits to suit your personal needs; paid vacation and sick leave in addition to 13 paid holidays; access to career-advancing educational programs, including and employee and dependent tuition benefit applicable at any of the NU campuses; and immediate vesting pre-tax retirement benefits.
Required Qualifications:
Bachelor's degree
3 years experience in Information Technology or with risk management frameworks and compliance practices
Knowledge of NIST standards and other applicable research compliance frameworks
Demonstrated ability to interpret and implement standards, guidelines, compliance frameworks and best practices
Experience performing risk assessments
Equivalent combination of education and experience, that provides the required knowledge, skills, and abilities may be considered.
(SR GRC Level)
Bachelor's degree
5 years' experience in information technology preferably in IT security
Demonstrated knowledge of NIST standards and other applicable research compliance frameworks
Knowledge of securing network technologies, client, and server operating systems
Ability to develop security standards and guidelines based on security compliance frameworks and best practices
Experience using security tools (vulnerability scanners, intrusion prevention systems, firewalls, VPN's, data loss prevention, etc.)
Equivalent combination of education and experience, that provides the required knowledge, skills, and abilities may be considered.
Preferred Qualifications:
Master's degree
Information security and compliance related training or certifications such as CISSP or CRISC
Understanding of information security standards and regulatory regulations related to higher education (FERPA, PCI, HIPAA)
Experience within a higher education environment
Experience using security tools (vulnerability scanners, intrusion prevention systems, firewalls, VPN's, data loss prevention, etc.)
Knowledge of securing network technologies, client, and server operating systems
(SR GRC Level)
Master's degree
Experience performing information security audits or risk assessments
Experience with security audit or assessment processes
Information security related training or certifications such as CISSP or CRISC
Experience within a higher education environment
Additional Information:
The ideal candidate is an agile professional with strong interpersonal communication skills, flexibility and responsiveness; exhibits high ethical standards; proficient in managing time and competing priorities; responsive and committed to supporting University staff; committed to the ideals of a major public research university.
Special Instructions:
Please note: Sponsorship will not be offered for this position.
This position is not eligible for an alternative worksite arrangement and is categorized as on-site. Once a candidate is hired into this role, hybrid work arrangements (defined by NU ITS as a minimum of three days per week on NU Campus and up to two days per week remote) may be available for candidatses who successfully meet minimum performance criteria during the initial probationary employment period.
Position title and salary will be determined based on education and experience of candidate.
Information at a Glance

What University Of Nebraska employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


University of Nebraska logo

About University of Nebraska

Sourced by ZipRecruiter

The University of Nebraska (UN), located in Lincoln, NE, US, is a leading public research university in the education sector. With its official website at nebraska.edu, the institution was established in 1869 as the first public university in Nebraska. Over the years, it has gained esteemed recognition for contributing to multiple fields, encompassing agriculture, arts, engineering, and more. It serves a wide range of students through its various programs and services, including undergraduate, graduate, online, and professional degree programs. The university's mission underpins the core values of learning, innovation, and engagement, aiming at enabling students to pursue knowledge and develop a skillset that facilitates lifelong success. Notably, the University of Nebraska holds a remarkable legacy of being ranked in the top third of all national universities, both public and private.

Industry

Education

Company size

10,000+ Employees

Headquarters location

Lincoln, NE, US

Year founded

1892

Social media