1

Grc Analyst Jobs (NOW HIRING)

Lennox is a company focused on governance risk compliance, and they are seeking a GRC Analyst Lead to serve as a technical and functional bridge between IT and business partners. The role involves ...

New

GRC Analyst

Irvine, CA · On-site

$110K - $135K/yr

Ease is hiring a GRC Analyst to support our governance, risk, and compliance program as we mature our security posture and expand into new compliance frameworks. This is a hands-on role at the ...

About the Role Merci Technologies is seeking a GRC Analyst to support the governance, risk, and compliance program for one of our enterprise clients. This role sits at the intersection of security ...

Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven people who are committed to our core values of humility, innovation, and excellence. Founded in 2005 ...

Apply Early

Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven people who are committed to our core values of humility, innovation, and excellence. Founded in 2005 ...

Be Seen First

Cyber GRC Analyst

Phoenix, AZ · Remote

$65K - $90K/yr

As a GRC Analyst, you will serve as the primary compliance and governance resource for a major healthcare client in San Diego, leading a multi-year rebuild of their security GRC program from the ...

Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven people who are committed to our core values of humility, innovation, and excellence. Founded in 2005 ...

Apply Early

Senior GRC Analyst

New York, NY · On-site +1

$132K - $165K/yr

We are looking for a Senior GRC Analyst to join our Technical Compliance team to ensure Garner's compliance posture across security frameworks such as ISO 27001, SOC 2, HITRUST, and HIPAA. As a ...

New

Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven people who are committed to our core values of humility, innovation, and excellence. Founded in 2005 ...

Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven people who are committed to our core values of humility, innovation, and excellence. Founded in 2005 ...

Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven people who are committed to our core values of humility, innovation, and excellence. Founded in 2005 ...

Sr. GRC Analyst About Subsplash Subsplash is an exciting award-winning team of 280+ mission-driven people who are committed to our core values of humility, innovation, and excellence. Founded in 2005 ...

Apply Early

SaaS - GRC Location: Phoenix, Arizona (3 days a week). Duration: Contract Position Key ... Analyze shared responsibility models and identify security gaps. * Review controls across IAM ...

What You Will Do As an Entry Level GRC Analyst at Hotman Group you will work side by side with senior team members and partners to help our clients strengthen their cybersecurity and compliance ...

next page

Showing results 1-20

Grc Analyst information

See salary details

$36.5K

$97.7K

$228.5K

How much do grc analyst jobs pay per year?

As of Jul 3, 2026, the average yearly pay for grc analyst in the United States is $97,659.00, according to ZipRecruiter salary data. Most workers in this role earn between $55,000.00 and $111,000.00 per year, depending on experience, location, and employer.

Is GRC a good career?

A GRC (Governance, Risk, and Compliance) analyst plays a key role in managing an organization’s security policies, risk assessments, and regulatory compliance. It is a growing field with demand for professionals skilled in frameworks like ISO, NIST, and tools such as audit management software. The role often requires certifications like CISA or CISSP and offers opportunities for career advancement in cybersecurity and risk management.

Is GRC an entry level job?

GRC Analyst roles can be entry-level or require some experience, depending on the organization. Entry-level positions typically focus on basic compliance, risk management, and security controls, often requiring foundational knowledge of cybersecurity or IT. More advanced roles may demand certifications like CISSP or CISA and prior experience in security or audit functions.

What are the key skills and qualifications needed to thrive in the Grc Analyst position, and why are they important?

To thrive as a GRC Analyst, you need a solid understanding of governance, risk management, and compliance frameworks, often complemented by a degree in information security, business, or a related field. Experience with GRC platforms (like RSA Archer, ServiceNow, or LogicManager), and certifications such as CISA, CRISC, or CISSP are highly valued. Strong analytical thinking, attention to detail, effective communication, and collaboration skills set outstanding GRC Analysts apart. These capabilities are vital for ensuring organizations meet regulatory requirements, identify and mitigate risks, and foster a culture of compliance.

What does a GRC analyst do?

A GRC analyst (Governance, Risk, and Compliance analyst) is responsible for managing an organization’s compliance with regulations, assessing and mitigating risks, and developing governance frameworks. They often use tools like risk management software and require knowledge of industry standards such as ISO or NIST. The role involves analyzing policies, conducting audits, and ensuring security controls are effective.

Do GRC analysts work from home?

GRC analysts can often work remotely, especially if their employer supports telecommuting and the role involves tasks like risk assessment, policy development, and compliance monitoring that can be performed online. However, some positions may require on-site presence for meetings, audits, or access to secure systems.

What are the typical daily responsibilities of a GRC Analyst?

GRC Analysts are responsible for monitoring and assessing organizational policies, procedures, and controls to ensure compliance with internal and external regulations. Their daily tasks often include performing risk assessments, maintaining documentation, supporting audits, analyzing data for potential security gaps, and preparing reports for management. They regularly collaborate with IT, legal, and business teams to remediate vulnerabilities and strengthen compliance programs. This dynamic role requires both independent research and cross-departmental communication to help organizations proactively manage risk and regulatory obligations.

What is a GRC Analyst job?

A GRC (Governance, Risk, and Compliance) Analyst is responsible for ensuring that an organization adheres to regulatory requirements, industry standards, and internal policies. They assess risks, implement compliance programs, and monitor security controls to protect data and systems. Their role often involves working with various departments to identify vulnerabilities, develop risk mitigation strategies, and prepare reports for audits. GRC Analysts play a key role in maintaining regulatory compliance and enhancing an organization's overall security posture.

What cities are hiring for Grc Analyst jobs? Cities with the most Grc Analyst job openings:
What are the most commonly searched types of Grc Analyst jobs? The most popular types of Grc Analyst jobs are:
What states have the most Grc Analyst jobs? States with the most job openings for Grc Analyst jobs include:
What job categories do people searching Grc Analyst jobs look for? The top searched job categories for Grc Analyst jobs are:
Infographic showing various Grc Analyst job openings in the United States as of June 2026, with employment types broken down into 80% Full Time, and 20% Contract. Highlights an 100% In-person job distribution, with an average salary of $97,659 per year, or $47 per hour.
GRC Analyst Lead

GRC Analyst Lead

Lennox

Richardson, TX • On-site

Full-time

Posted 2 days ago


Lennox International rating

7.2

Company rating: 7.2 out of 10

Based on 53 frontline employees who took The Breakroom Quiz

270th of 421 rated machine equipment manufacturers


Job description

Job Summary:
Lennox is a company focused on governance risk compliance, and they are seeking a GRC Analyst Lead to serve as a technical and functional bridge between IT and business partners. The role involves performing security and compliance assessments, ensuring GRC rulesets reflect business processes, and mitigating risks with appropriate controls.
Responsibilities:
• Support the GRC Manager on projects related to ruleset architecture, Segregation of Duties (SoD) conflicts, and SAP GRC reporting.
• Lead the review and modification of the GRC ruleset to ensure alignment with evolving business processes.
• Enhance ruleset permissions at the object and field level to reduce false positives and capture missing risks.
• Review and adjudicate access requests to determine if requested roles are appropriate while adhering to the principle of least privilege.
• Perform deep-dive reviews of mitigating controls to ensure they are properly designed and effectively mitigate the specific risks they are assigned to cover.
• Identify and assess potential risks within IT projects and system enhancements, ensuring appropriate controls are built in.
• Gather and report data to support internal/external auditors and compliance partners.
Qualifications:
Required:
• Requires a Bachelor’s degree in Management Information Systems, Accounting/Finance, or a related technical field or an equivalent combination of education and experience.
• Requires at least 5 years related experience.
• Requires at least 3 years of direct experience in SAP GRC and/or SAP Security.
• Strong, hands-on experience with SAP GRC (Access Control).
• A technical understanding of SAP authorization objects and T-codes related to the EWM, TML, FI, MM, GTS, and HR modules.
• Ability to analyze complex business systems and identify risks and control weaknesses.
• Strong interpersonal skills to explain to business owners why a specific access request may be inappropriate and how to remediate the issue.
• Ability to mentor junior team members and build effective partnerships across IT and business teams.
Preferred:
• Experience with procurement systems (Ariba) is a plus.
Company:
Lennox (NYSE: LII) is a leading provider of innovative climate control solutions for heating, ventilation, air conditioning, and refrigeration (HVACR) markets. Founded in 1895, the company is headquartered in Richardson, USA, with a team of 10001+ employees. The company is currently Late Stage.

What Lennox International employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom