... vulnerability analysis, security risk mitigation, and patient safety considerations. • ... GRC platforms or structured spreadsheet-based tools. • Working knowledge of cloud security ...
... vulnerability analysis, security risk mitigation, and patient safety considerations. • ... GRC platforms or structured spreadsheet-based tools. • Working knowledge of cloud security ...
Senior Cybersecurity Risk Analyst - USA Remote
Orange, CA · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Familiarity with GRC platforms (e.g., OneTrust, ServiceNow IRM, RSA Archer) and vendor risk tooling ...
Senior Cybersecurity Risk Analyst - USA Remote
Orange, CA · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Familiarity with GRC platforms (e.g., OneTrust, ServiceNow IRM, RSA Archer) and vendor risk tooling ...
Medical Device Cybersecurity Risk Specialist
Irvine, CA · On-site
$110K - $120K/yr
... vulnerability analysis, security risk mitigation, and patient safety considerations. • ... GRC platforms or structured spreadsheet-based tools. • Working knowledge of cloud security ...
Medical Device Cybersecurity Risk Specialist
Irvine, CA · On-site
$110K - $120K/yr
... vulnerability analysis, security risk mitigation, and patient safety considerations. • ... GRC platforms or structured spreadsheet-based tools. • Working knowledge of cloud security ...
Legal Counsel, Technology, Data & Privacy Compliance
Anaheim, CA · On-site
$150K - $180K/yr
... GRC"). Responsibilities * Provide legal support and advice to various business units on a variety ... Proactively monitor, research, review and analyze U.S. laws, rules and regulations for compliance
Legal Counsel, Technology, Data & Privacy Compliance
Anaheim, CA · On-site
$150K - $180K/yr
... GRC"). Responsibilities * Provide legal support and advice to various business units on a variety ... Proactively monitor, research, review and analyze U.S. laws, rules and regulations for compliance
Legal Counsel, Technology, Data & Privacy Compliance
Anaheim, CA · On-site
$150K - $180K/yr
... GRC"). Responsibilities * Provide legal support and advice to various business units on a variety ... Proactively monitor, research, review and analyze U.S. laws, rules and regulations for compliance
Legal Counsel, Technology, Data & Privacy Compliance
Anaheim, CA · On-site
$150K - $180K/yr
... GRC"). Responsibilities * Provide legal support and advice to various business units on a variety ... Proactively monitor, research, review and analyze U.S. laws, rules and regulations for compliance
SAP Security Lead
Irvine, CA · On-site
Monitor and analyze SAP security logs and reports to detect and respond to security incidents ... Hands-on experience with SAP security tools and technologies, such as SAP GRC (Governance, Risk ...
SAP Security Lead
Irvine, CA · On-site
Monitor and analyze SAP security logs and reports to detect and respond to security incidents ... Hands-on experience with SAP security tools and technologies, such as SAP GRC (Governance, Risk ...
Strong organizational, analytical, and problem-solving skills. * Ability to manage multiple ... Background working with cybersecurity, governance, risk, and compliance (GRC) teams. * Familiarity ...
Strong organizational, analytical, and problem-solving skills. * Ability to manage multiple ... Background working with cybersecurity, governance, risk, and compliance (GRC) teams. * Familiarity ...
SAP Security Lead
Irvine, CA · On-site
Hands-on experience with SAP security tools and technologies, such as SAP GRC (Governance, Risk ... Excellent analytical, problem-solving, and communication skills, with the ability to collaborate ...
SAP Security Lead
Irvine, CA · On-site
Hands-on experience with SAP security tools and technologies, such as SAP GRC (Governance, Risk ... Excellent analytical, problem-solving, and communication skills, with the ability to collaborate ...
Distribution/Vegetation Management Asset Strategy, Advisor
Pomona, CA · On-site
$143K - $215K/yr
... GRC), Wildfire Mitigation Plan (WMP), and Risk Assessment Mitigation Phase (RAMP). As a ... Prepares analysis and communicates business performance and results as needed. * Leads all ...
Distribution/Vegetation Management Asset Strategy, Advisor
Pomona, CA · On-site
$143K - $215K/yr
... GRC), Wildfire Mitigation Plan (WMP), and Risk Assessment Mitigation Phase (RAMP). As a ... Prepares analysis and communicates business performance and results as needed. * Leads all ...
Dir., Safety ($137,600 - $178,200)
$130K - $168K/yr
Job Safety Analysis (JSA), Root Cause Analysis (RCA), and Accident Prevention Plans. * Review Global Risk Control (GRC) reports and implement engineering recommendations to prevent property claims.
Dir., Safety ($137,600 - $178,200)
$130K - $168K/yr
Job Safety Analysis (JSA), Root Cause Analysis (RCA), and Accident Prevention Plans. * Review Global Risk Control (GRC) reports and implement engineering recommendations to prevent property claims.
Grid Modernization and Digitalization Strategy Integration Senior Advisor
Pomona, CA · On-site
$182K - $274K/yr
Rate Case (GRC) and10-year Grid Modernization Plan (GMP) * Maintains Grid Modernization's tower deployment performance and helps to develop and enhance Grid Modernization's benefit-cost analysis for ...
Grid Modernization and Digitalization Strategy Integration Senior Advisor
Pomona, CA · On-site
$182K - $274K/yr
Rate Case (GRC) and10-year Grid Modernization Plan (GMP) * Maintains Grid Modernization's tower deployment performance and helps to develop and enhance Grid Modernization's benefit-cost analysis for ...
Leader, Internal Audit
Irvine, CA · On-site
$84K - $148K/yr
Leverages data analytics, dashboards, and audit tools (e.g., Workiva, GRC platforms, and etc.) to enhance audit efficiency and consistency. * Perform other duties and special projects assigned.
Leader, Internal Audit
Irvine, CA · On-site
$84K - $148K/yr
Leverages data analytics, dashboards, and audit tools (e.g., Workiva, GRC platforms, and etc.) to enhance audit efficiency and consistency. * Perform other duties and special projects assigned.
Leader, Internal Audit
Irvine, CA · On-site
$84K - $148K/yr
Leverages data analytics, dashboards, and audit tools (e.g., Workiva, GRC platforms, and etc.) to enhance audit efficiency and consistency. * Perform other duties and special projects assigned.
Leader, Internal Audit
Irvine, CA · On-site
$84K - $148K/yr
Leverages data analytics, dashboards, and audit tools (e.g., Workiva, GRC platforms, and etc.) to enhance audit efficiency and consistency. * Perform other duties and special projects assigned.
Compliance Consultant - Contract to Hire
Irvine, CA · On-site
$114K - $141K/yr
... cause analysis, and issue review and validation. You'll provide leadership and direction in ... You'll also conduct compliance risk assessments (CCRA) in the firm's GRC platform, ensuring ...
Compliance Consultant - Contract to Hire
Irvine, CA · On-site
$114K - $141K/yr
... cause analysis, and issue review and validation. You'll provide leadership and direction in ... You'll also conduct compliance risk assessments (CCRA) in the firm's GRC platform, ensuring ...
Aligns with Business and Systems Analysts to understand the business requirements and create the ... Deep understanding of SAP authorizations, security roles, profiles, GRC and IAM. * Extensive ...
Aligns with Business and Systems Analysts to understand the business requirements and create the ... Deep understanding of SAP authorizations, security roles, profiles, GRC and IAM. * Extensive ...
Principal Manager - AMI 2.0 Program Deliver
Pomona, CA · On-site
$206K - $309K/yr
Creates budget forecasts and performs budget analysis to manage workflow and stay within budget ... Experience supporting regulatory commitments and engagements (e.g., GRC, filings, testimony, or ...
Principal Manager - AMI 2.0 Program Deliver
Pomona, CA · On-site
$206K - $309K/yr
Creates budget forecasts and performs budget analysis to manage workflow and stay within budget ... Experience supporting regulatory commitments and engagements (e.g., GRC, filings, testimony, or ...
Application Security Architect, Senior Advisor
Pomona, CA · On-site
$182K - $274K/yr
Aligns with Business and Systems Analysts to understand the business requirements and create the ... Deep understanding of SAP authorizations, security roles, profiles, GRC and IAM. * Extensive ...
Application Security Architect, Senior Advisor
Pomona, CA · On-site
$182K - $274K/yr
Aligns with Business and Systems Analysts to understand the business requirements and create the ... Deep understanding of SAP authorizations, security roles, profiles, GRC and IAM. * Extensive ...
AI Enablement & Governance Lead
Irvine, CA · On-site
$150K - $180K/yr
Hire, develop, and manage two Governance Analysts; set performance expectations, provide coaching ... Hands-on familiarity with AI governance tooling, GRC platforms, and TPRM workflows. * Familiarity ...
AI Enablement & Governance Lead
Irvine, CA · On-site
$150K - $180K/yr
Hire, develop, and manage two Governance Analysts; set performance expectations, provide coaching ... Hands-on familiarity with AI governance tooling, GRC platforms, and TPRM workflows. * Familiarity ...
Compliance Consultant - Contract to Hire
Irvine, CA · On-site
$114K - $141K/yr
... cause analysis, and issue review and validation. You'll provide leadership and direction in ... You'll also conduct compliance risk assessments (CCRA) in the firm's GRC platform, ensuring ...
Compliance Consultant - Contract to Hire
Irvine, CA · On-site
$114K - $141K/yr
... cause analysis, and issue review and validation. You'll provide leadership and direction in ... You'll also conduct compliance risk assessments (CCRA) in the firm's GRC platform, ensuring ...
Grc Analyst information
See Riverside, CA salary details
$38.1K - $56.3K
24% of jobs
$56.9K is the 25th percentile. Wages below this are outliers.
$56.3K - $74.5K
16% of jobs
The median wage is $84.1K / yr.
$74.5K - $92.7K
18% of jobs
$109.3K is the 75th percentile. Wages above this are outliers.
$92.7K - $110.9K
18% of jobs
$110.9K - $129.1K
11% of jobs
$129.1K - $147.3K
4% of jobs
$147.3K - $165.5K
1% of jobs
$165.5K - $183.8K
1% of jobs
$183.8K - $202K
2% of jobs
$202K - $220.2K
2% of jobs
$220.2K - $238.4K
2% of jobs
$38.1K
$101.9K
$238.4K
How much do grc analyst jobs pay per year?
Is GRC a good career?
Is GRC an entry level job?
What are the key skills and qualifications needed to thrive in the Grc Analyst position, and why are they important?
To thrive as a GRC Analyst, you need a solid understanding of governance, risk management, and compliance frameworks, often complemented by a degree in information security, business, or a related field. Experience with GRC platforms (like RSA Archer, ServiceNow, or LogicManager), and certifications such as CISA, CRISC, or CISSP are highly valued. Strong analytical thinking, attention to detail, effective communication, and collaboration skills set outstanding GRC Analysts apart. These capabilities are vital for ensuring organizations meet regulatory requirements, identify and mitigate risks, and foster a culture of compliance.
What does a GRC analyst do?
Do GRC analysts work from home?
What are the typical daily responsibilities of a GRC Analyst?
GRC Analysts are responsible for monitoring and assessing organizational policies, procedures, and controls to ensure compliance with internal and external regulations. Their daily tasks often include performing risk assessments, maintaining documentation, supporting audits, analyzing data for potential security gaps, and preparing reports for management. They regularly collaborate with IT, legal, and business teams to remediate vulnerabilities and strengthen compliance programs. This dynamic role requires both independent research and cross-departmental communication to help organizations proactively manage risk and regulatory obligations.
What is a GRC Analyst job?
A GRC (Governance, Risk, and Compliance) Analyst is responsible for ensuring that an organization adheres to regulatory requirements, industry standards, and internal policies. They assess risks, implement compliance programs, and monitor security controls to protect data and systems. Their role often involves working with various departments to identify vulnerabilities, develop risk mitigation strategies, and prepare reports for audits. GRC Analysts play a key role in maintaining regulatory compliance and enhancing an organization's overall security posture.

Other
Posted 9 days ago
Tata Consultancy Services rating
6.5
Based on 21 frontline employees who took The Breakroom Quiz
157th of 207 rated it services
Job description
Job Title: Medical Device Cybersecurity Risk Specialist
Work Location: Irvine, California, United States
Must Have Technical/Functional Skills:
• Strong understanding of information security risk management frameworks such as NIST CSF, ISO 27001 / 27005, FAIR, and COSO.
• Hands-on experience in conducting cybersecurity risk assessments, threat modeling, and evaluating risks across systems, vendors, projects, and business processes.
• Solid knowledge of medical device cybersecurity, including vulnerability analysis, security risk mitigation, and patient safety considerations.
• Familiarity with medical device integration, healthcare application ecosystems, and interactions with EHR systems and third-party healthcare vendor applications.
• Understanding of common cybersecurity controls including network security, endpoint protection, identity and access management, encryption, logging/monitoring, and secure system configuration.
• Experience reviewing penetration testing findings, identifying practical mitigation options, and validating remediation approaches in partnership with vendors or technical teams.
• Ability to maintain and manage risk registers, risk treatment plans, dashboards, and remediation tracking mechanisms using GRC platforms or structured spreadsheet-based tools.
• Working knowledge of cloud security, security operations, and cybersecurity input into SDLC, infrastructure changes, and new service introductions.
• Familiarity with regulatory and compliance expectations relevant to healthcare and medical devices, including cybersecurity documentation and risk-based decision-making.
• Exposure to Agile / Scrum methodologies and cross-functional project execution is highly desirable.
• Ability to research emerging threats, assess business relevance, and proactively recommend risk reduction actions.
Roles & Responsibilities:
• Develop, maintain, and continuously improve the organization’s cybersecurity risk management program, with emphasis on practical and sustainable risk reduction.
• Perform qualitative and quantitative risk assessments for systems, projects, vendors, healthcare technologies, and business processes.
• Analyze medical device cybersecurity vulnerabilities, penetration testing findings, and technical risks to determine impact, likelihood, and patient/business impact.
• Partner with internal teams, vendors, and business owners to identify, validate, and track approved mitigation strategies and alternative risk treatment options where needed.
• Maintain accurate and up-to-date risk registers, risk treatment plans, issue logs, and risk dashboards.
• Support the selection, implementation, and validation of technical, administrative, and procedural security controls.
• Provide cybersecurity and risk management input into projects, cloud initiatives, system integrations, device onboarding, and service changes.
• Coordinate and support t hird-party/vendor risk assessments, follow-up actions, and remediation closure tracking.
• Translate technical cybersecurity issues into clear business impact statements and communicate them effectively to leadership and non-technical stakeholders.
• Produce recurring risk posture reports, trends, metrics, and remediation summaries for management and governance forums.
• Support incident response activities and perform post-incident risk analysis to identify lessons learned and strengthen controls.
• Promote a strong security and risk-aware culture by engaging with stakeholders, educating teams, and encouraging proactive risk identification.
• Collaborate effectively across cybersecurity, engineering, quality, clinical/biomedical, IT, and vendor teams to ensure balanced decision-making that protects both operations and patient safety.
• Stay current on evolving cybersecurity threats, healthcare technology risks, and relevant compliance expectations.
What Tata Consultancy Services employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Tata Consultancy Services
Sourced by ZipRecruiter
Tata Consultancy Services is an IT services, consulting and business solutions organization that delivers real results to global business, ensuring a level of certainty no other firm can match. TCS offers a consulting-led, integrated portfolio of IT, BPO, infrastructure, engineering, and assurance services. This is delivered through its unique Global Network Delivery Model™, recognized as the benchmark of excellence in software development. TCS delivers a level of certainty that no other firm can match--to our clients and to our employees. Come join us and experience certainty in your career. TCS a global Consulting and IT Services firm that is ranked in the top quartile by industry analysts. Our 2021 fiscal revenues topped $25 B and our market capitalization is over $170+B, yet we have a deep and large history of philanthropy and corporate social responsibility. Now approaching 600K of the best IT professionals and consultants, we are a trusted advisor, guiding our clients' enterprises through growth and transformation journeys - helping them to become agile, intelligent, automated and on the cloud. We are devoted to DEI and are recognized as a top employer and place to work.