1

Governance Risk Compliance Manager Jobs (NOW HIRING)

ABOUT THE ROLE The Manager, Governance, Risk, and Compliance leads Accela security governance, risk, compliance, audit, and customer trust programs. This role owns security policies, standards, risk ...

Governance, Risk & Compliance Lead

Draper, UT · On-site

$146K/yr

You will build our governance, risk, and compliance program from the ground up and carry us to ... management. • Build a unified control framework - maintain a single control set mapped across ...

next page

Showing results 1-20

Governance Risk Compliance Manager information

See salary details

$38.5K

$95.1K

$157K

How much do governance risk compliance manager jobs pay per year?

As of Jul 18, 2026, the average yearly pay for governance risk compliance manager in the United States is $95,103.00, according to ZipRecruiter salary data. Most workers in this role earn between $70,000.00 and $116,500.00 per year, depending on experience, location, and employer.

How does a Governance Risk Compliance (GRC) Manager typically collaborate with other departments to ensure effective risk management?

A GRC Manager works closely with various departments such as IT, legal, finance, and operations to identify, assess, and mitigate risks across the organization. This often involves facilitating cross-departmental meetings, guiding teams through compliance requirements, and ensuring that controls are implemented effectively. Strong communication and project management skills are essential, as GRC Managers must translate complex regulatory requirements into actionable steps for different teams. This collaborative approach helps ensure that risk management strategies are integrated into daily business processes and that compliance goals are met organization-wide.

What is the salary of governance risk compliance?

The salary for a Governance, Risk, and Compliance (GRC) Manager typically ranges from $80,000 to $150,000 annually, depending on experience, location, and industry. Professionals with certifications like CRISC or CISA and strong knowledge of regulatory frameworks may earn higher salaries.

Is governance risk and compliance a good career?

Governance, Risk, and Compliance (GRC) management is a growing field that involves developing policies, managing regulatory requirements, and ensuring organizational integrity. It often requires certifications like CISA or CRISC and skills in risk assessment, policy development, and compliance frameworks. The role offers stability and opportunities across various industries, making it a viable career choice for those interested in organizational governance and risk management.

What does a governance and risk manager do?

A governance and risk manager oversees an organization’s compliance with laws, regulations, and internal policies, identifying and mitigating potential risks. They develop frameworks, conduct audits, and implement controls to ensure operational integrity and reduce vulnerabilities, often using tools like risk assessment software and requiring certifications such as CRISC or ISO standards.

What is the difference between Governance Risk Compliance Manager vs Compliance Analyst?

AspectGovernance Risk Compliance ManagerCompliance Analyst
CertificationsISO 31000, CRISC, CISACCA, CCEP, or similar
Work EnvironmentStrategic, managerial, policy-focusedOperational, detail-oriented, audit-focused
Employer & Industry UsageFinancial, healthcare, corporate sectorsRegulatory agencies, corporations, consulting firms
Search & Comparison IntentUnderstanding managerial roles in governance and riskDetailing compliance procedures and analysis

The Governance Risk Compliance Manager oversees organizational policies, risk management strategies, and compliance frameworks at a strategic level. In contrast, the Compliance Analyst focuses on implementing and monitoring compliance procedures, conducting audits, and ensuring adherence to regulations. Both roles require relevant certifications and are vital in maintaining organizational integrity, but they differ in scope and responsibilities.

What does a Governance Risk Compliance (GRC) Manager do?

A Governance Risk Compliance (GRC) Manager is responsible for developing, implementing, and overseeing policies and procedures to ensure that an organization complies with regulatory requirements and manages risks effectively. They work closely with various departments to identify potential risks, ensure proper governance frameworks are in place, and monitor compliance with relevant laws and standards. GRC Managers play a key role in maintaining ethical practices, preventing legal issues, and helping organizations achieve their business objectives securely and efficiently.

What are the key skills and qualifications needed to thrive as a Governance Risk Compliance Manager, and why are they important?

To thrive as a Governance Risk Compliance Manager, you need expertise in risk assessment, regulatory frameworks, and compliance management, typically supported by a degree in business, law, or a related field. Familiarity with GRC platforms (like RSA Archer or MetricStream), internal audit tools, and relevant certifications such as CISA, CISM, or CRISC is common. Strong analytical thinking, attention to detail, and effective communication help manage complex regulations and drive organizational compliance culture. These skills ensure the organization can proactively identify risks, comply with legal requirements, and maintain operational integrity.

Is GRC an entry level job?

Governance, Risk, and Compliance (GRC) roles are typically not entry-level positions; they usually require several years of experience in compliance, risk management, or related fields. Entry-level roles in GRC may focus on supporting functions, while managerial positions often demand a strong understanding of regulations, policies, and relevant tools like GRC software. Certifications such as CISA or CRISC can also be beneficial for advancement.
More about Governance Risk Compliance Manager jobs
What cities are hiring for Governance Risk Compliance Manager jobs? Cities with the most Governance Risk Compliance Manager job openings:
What are the most commonly searched types of Governance Risk Compliance jobs? The most popular types of Governance Risk Compliance jobs are:
What states have the most Governance Risk Compliance Manager jobs? States with the most job openings for Governance Risk Compliance Manager jobs include:
Infographic showing various Governance Risk Compliance Manager job openings in the United States as of July 2026, with employment types broken down into 1% As Needed, 82% Full Time, 12% Part Time, 1% Temporary, and 4% Contract. Highlights an 93% Physical, 2% Hybrid, and 5% Remote job distribution, with an average salary of $95,103 per year, or $45.7 per hour.

Full-time

Posted 25 days ago


Job description

Job Type:

Regular

Plains is an industry-leading transportation and midstream provider specializing in transportation, storage, processing and marketing solutions for crude oil. We own an extensive network of pipeline transportation, terminalling, storage and gathering assets in key oil producing basins and transportation corridors and at major market hubs in the United States and Canada. The company is headquartered in Houston, Texas.

We're on the lookout for passionate selfstarters who thrive in fastmoving, collaborative, and innovative environments.

The Manager, GRC is responsible for overseeing the Governance, Risk, and Compliance (GRC) functions within the organization. This role involves developing and implementing strategies, policies, and standards to ensure that the organization adheres to regulatory requirements and internal audit policies.

Job Responsibilities

  • Function/Capability: The primary function of the GRC Manager is to lead, develop, and implement GRC strategies, policies, and standards managing risks to an acceptable level of organization for IT/OT environments. This includes creating frameworks and guidelines that align with the organization's objectives, regulatory standards, and internal audit requirements. In addition to managing Third Party Risks.

  • Accountability/Tasks: The GRC Manager is accountable for leading a team ensuring compliance with regulatory requirements and internal audit policies. This involves conducting risk assessments, regular audits, and applying appropriate risk treatment to ensure that the organization remains compliant.

Knowledge, Skills, and Experience Required

  • Years of direct experience: The GRC Manager should have a minimum of +6 years of experience in a similar GRC functional leader role. This experience should include managing GRC functions, working across teams, and implementing compliance programs.

  • Education, combination of experience, thereof: A Bachelor's degree in a related field or equivalent experience is required. This educational background should reflect a strong foundation in governance, risk management, and compliance principles.

  • Credentials and designations: Relevant certifications such as CISA, CRISC, CGEIT, AAIA, and CISSP are highly desirable. These credentials demonstrate a deep understanding of the aggregate GRC practices and a commitment to ongoing professional development.

  • Core competencies and skills required: The GRC Manager should possess strong people, analytical and problem-solving skills. Excellent communicator and interpersonal skills, and the ability to work effectively with cross-functional teams. These competencies are essential for identifying risks, developing risk treatment strategies, and ensuring compliance. In addition, the GRC manager should be open to evolving their skillset as industry regulations change.

  • Working knowledge of GRC Platforms (Workiva, Archer, etc.); working knowledge of program/project management/audit Methodologies/Platforms, working knowledge of MTSA/TSA/CER regulatory tracking and pipeline common carrier cyber and risk management regulations: Proficiency in GRC and tracking in Microsoft Excel, project management, and GRC software is required. Familiarity with the organization's core energy software applications is also important for effectively managing GRC functions.

  • Expert Understanding of the following IT/OT cybersecurity regulations and/or risk management frameworks: IEC 62443, NIST CSF 2.0, NIST 800-53, NIST 800-82, NIST 800-37, NIST AI 100-1, MTSA, CER, TSA, VADR, and Coast Guard (preferred).

  • Cleared criminal history (background) and satisfactory reference checks: Government intelligence clearance or previous experience working in a secure, classified environment(s).

#Plains

At Plains, our employees are our most valuable asset. Hard work is rewarded with competitive compensation and a top-tier benefits program designed to keep our employees safe, healthy and happy. We work hard to deliver the best results to our stakeholders, and we also respect our employees' need for personal and family time, which is reflected in our benefits program.

We are proud to bean Equal Opportunity Employer. We are committed to providing employment opportunities to all qualified individuals, without regard to age, race, color, national or ethnic origin, religion, sex, sexual orientation, gender identity or expression, veteran status, genetic information, disability, or any other characteristic protected by federal, state, or local law.Applicants with disabilities can request accessible formats, communication supports, or other accessibility assistance by contacting WebCareers@Plains.com.

Salary details estimated by job boards such as Indeed, Glassdoor, and LinkedIn do not represent Plains' compensation structure. We thank all candidates for their interest; however, only those selected for an interview will be contacted.

By submitting your resume, you consent to the collection, use and necessary disclosure of the personal information provided during the application and selection process. Learn more.