1

Governance Risk Compliance Intern Jobs (NOW HIRING)

next page

Showing results 1-20

Governance Risk Compliance Intern information

See salary details

$26.5K

$46.8K

$74K

How much do governance risk compliance intern jobs pay per year?

As of Jul 13, 2026, the average yearly pay for governance risk compliance intern in the United States is $46,803.00, according to ZipRecruiter salary data. Most workers in this role earn between $40,000.00 and $48,500.00 per year, depending on experience, location, and employer.

What is the difference between Governance Risk Compliance Intern vs Compliance Analyst?

AspectGovernance Risk Compliance InternCompliance Analyst
CredentialsTypically pursuing or recent graduate in related fieldBachelor's degree in law, business, or related field; certifications like CCEP are common
Work EnvironmentInternship setting, learning-focused, entry-level tasksFull-time role, responsible for monitoring and implementing compliance policies
Industry UsageUsed in organizations with compliance programs, often as a temporary positionEstablished role in compliance departments across industries

The Governance Risk Compliance Intern role is an entry-level, learning-focused position often held by students or recent graduates. In contrast, a Compliance Analyst is a full-time professional responsible for ensuring organizational adherence to regulations. While both roles involve understanding compliance principles, the intern role emphasizes gaining experience, whereas the analyst role involves active management and implementation of compliance strategies.

What does a Governance Risk Compliance Intern do?

A Governance Risk Compliance (GRC) Intern assists organizations in identifying, assessing, and managing risks related to governance, business processes, and regulatory compliance. Their tasks often include supporting audits, reviewing internal controls, assisting with policy creation, and helping ensure that the company adheres to relevant laws and regulations. GRC Interns work closely with different departments to monitor compliance efforts and help maintain documentation required for risk management and reporting. This role provides valuable exposure to corporate risk assessment and regulatory frameworks.

What are the key skills and qualifications needed to thrive as a Governance Risk Compliance Intern, and why are they important?

To thrive as a Governance Risk Compliance Intern, you generally need a background in business, finance, or information systems along with a basic understanding of risk management principles. Familiarity with tools like Microsoft Excel, GRC software, and knowledge of standards such as ISO 27001 or SOX is often beneficial. Strong attention to detail, analytical thinking, and effective communication skills help you excel in collaborating with teams and identifying compliance gaps. These skills are crucial for supporting organizational integrity, mitigating risks, and ensuring adherence to regulatory requirements.

What types of projects or tasks can a Governance Risk Compliance Intern expect to work on during their internship?

As a Governance Risk Compliance Intern, you can expect to assist with a variety of tasks such as conducting risk assessments, analyzing company policies for compliance with regulations, and helping to prepare reports for audits. You'll often collaborate with different departments to gather information, support the development of internal controls, and participate in meetings on risk identification and mitigation. This role provides a great opportunity to learn about regulatory frameworks, gain hands-on experience with compliance tools, and build a foundation for a career in risk management or corporate governance.
More about Governance Risk Compliance Intern jobs
What cities are hiring for Governance Risk Compliance Intern jobs? Cities with the most Governance Risk Compliance Intern job openings:
What are the most commonly searched types of Governance Risk Compliance jobs? The most popular types of Governance Risk Compliance jobs are:
What states have the most Governance Risk Compliance Intern jobs? States with the most job openings for Governance Risk Compliance Intern jobs include:
Infographic showing various Governance Risk Compliance Intern job openings in the United States as of July 2026, with employment types broken down into 1% As Needed, 82% Full Time, 12% Part Time, 1% Temporary, and 4% Contract. Highlights an 93% Physical, 2% Hybrid, and 5% Remote job distribution, with an average salary of $46,803 per year, or $22.5 per hour.

Governance, Risk & Compliance (GRC) Manager

Riverside Research Institute

Beavercreek, OH โ€ข On-site

$145K - $170K/yr

Full-time

Posted 3 days ago

New


Job description

Riverside Overview
Riverside Research is an independent National Security Nonprofit dedicated to research and development in the national interest. We provide high-end technical services, research and development, and prototype solutions to some of the country's most challenging technical problems.
All Riverside Research opportunities require U.S. Citizenship.
Position Overview
The Manager, Governance, Risk & Compliance (GRC) leads Riverside Research's Governance, Risk, and Compliance program supporting the organization's unclassified enterprise and research information systems. Reporting to the Director of Information Security, this position is responsible for maintaining and continuously maturing Riverside's cybersecurity governance framework, enterprise risk management program, and regulatory compliance initiatives.
This role serves as both a people leader and technical contributor, providing leadership for a team of GRC professionals while partnering across Information Security, Information Technology, Contracts, Human Resources, Finance, Legal, and Business Operations to ensure cybersecurity and compliance objectives align with organizational and customer requirements.
The Manager owns Riverside's Cybersecurity Maturity Model Certification (CMMC) program, leading continuous readiness activities, regulatory assessments, governance initiatives, and enterprise risk management efforts to maintain the organization's strong cybersecurity posture and support Department of Defense mission requirements.
Responsibilities
  • Lead Riverside Research's Governance, Risk, and Compliance (GRC) program supporting the enterprise cybersecurity strategy, governance framework, and compliance objectives.
  • Own Riverside's Cybersecurity Maturity Model Certification (CMMC) program, ensuring continuous readiness for annual affirmations and Certified Third-Party Assessment Organization (C3PAO) assessments.
  • Lead and mentor a team of GRC Analysts, establishing priorities, developing staff, and fostering a culture of accountability, collaboration, and continuous improvement.
  • Develop, maintain, and govern enterprise cybersecurity policies, standards, procedures, and supporting documentation.
  • Lead Riverside's Enterprise Risk Management (ERM) program by facilitating risk identification, assessment, mitigation planning, and executive reporting.
  • Drive continuous monitoring activities through operational oversight, technical auditing, internal control assessments, and compliance reviews to ensure adherence to regulatory, contractual, and organizational security requirements.
  • Manage corrective action plans, findings, Plans of Action & Milestones (POA&Ms), and remediation activities through closure.
  • Provide governance oversight for cybersecurity programs including identity and access management, vulnerability management, configuration management, incident response, security awareness, external information sharing, third-party risk management, and data protection.
  • Partner with Information Technology and Information Security teams to ensure enterprise architecture and technology solutions align with cybersecurity strategy, regulatory requirements, and organizational risk tolerance.
  • Maintain awareness of evolving FAR, DFARS, CMMC, NIST, and Department of Defense cybersecurity requirements, advising leadership on regulatory changes and organizational impacts.
  • Develop executive dashboards, metrics, and reports that communicate cybersecurity posture, enterprise risk, and compliance status to senior leadership.
  • Collaborate with business stakeholders including Contracts, Human Resources, Finance, Legal, Marketing, and Business Operations to integrate cybersecurity governance into business processes.
  • Serve as a trusted advisor to leadership by translating cybersecurity, compliance, and enterprise risk into actionable business recommendations.

Qualifications
Required Qualifications
  • Bachelor's degree in Cybersecurity, Information Systems, Computer Science, Information Assurance, Business, or a related discipline.
  • Twelve (12) years of progressively responsible experience in cybersecurity, information assurance, governance, risk, compliance, or related disciplines, including at least three (3) years of leadership experience managing technical teams or enterprise cybersecurity programs.
  • Demonstrated success leading external security assessments, regulatory audits, or certification efforts within a regulated industry such as the Defense Industrial Base, government contracting, financial services, healthcare, or telecommunications.
  • Strong knowledge of Cybersecurity Maturity Model Certification (CMMC), NIST SP 800-171, Department of Defense Controlled Unclassified Information (CUI) requirements, and applicable FAR and DFARS cybersecurity clauses.
  • Experience developing and maintaining cybersecurity governance programs, policies, standards, and enterprise compliance initiatives.
  • Strong understanding of enterprise information technology including Microsoft 365, Microsoft Entra ID, Microsoft Azure, Amazon Web Services (AWS), virtualization, and hybrid infrastructure.
  • Excellent written, verbal, and presentation skills with the ability to communicate complex technical concepts to executive leadership and non-technical stakeholders.
  • Demonstrated ability to lead cross-functional initiatives, influence organizational change, and build collaborative relationships across multiple business functions.
  • Must live or relocate to a commutable distance of Beavercreek, Ohio
Preferred Qualifications
  • Experience maintaining a certified CMMC Level 2 environment.
  • Experience leading Certified Third-Party Assessment Organization (C3PAO) assessments and/or DIBCAC assessments.
  • Experience leading Enterprise Risk Management (ERM) programs.
  • Experience with cloud security, Data Loss Prevention (DLP), Third-Party Risk Management, Cyber Supply Chain Risk Management (C-SCRM).
  • Industry certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified in Governance, Risk and Compliance (CGRC), or Certified Cloud Security Professional (CCSP).

Global Comp
$140,000- $170,000 This represents the typical compensation range for this position based on experience, location and other factors.
Closing Statement
Riverside Research Institute is a not-for-profit, technology-oriented defense company, where service to our customers and support of our staff is our overall mission. Riverside is an affirmative action-equal opportunity employer and complies with all applicable federal, state, and local laws regarding recruitment and hiring. Riverside offers comprehensive compensation and benefit packages to our employees.
Riverside bases its employment decisions solely on technical experience, qualifications and other job-related criteria related to our organizational purpose as a not-for-profit company, and without regard to race, color, religion, age, sex marital status, sexual orientation, national origin, physical or mental disability, veteran's status or any other status legally protected by applicable federal, state, and local law.