1

Grc Analyst Jobs (NOW HIRING)

SAP GRC Analyst / SAP Security Analyst - 1796 Location: Monday - Friday - Onsite in Richardson, TX Employment Type: Direct Hire - Full-Time Employment Salary Range: $130K + Bonus Residency ...

Senior GRC Analyst

Seattle, WA · On-site

$140K - $165K/yr

We're looking for a Senior GRC Analyst to serve as the primary architect for our expanding ISO ecosystem. As a Senior GRC Analyst at DigitalOcean, you will lead the strategic maturation of ...

The Opportunity We are hiring a Security GRC & Risk Analyst to own the governance, risk, and compliance execution layer across a holding company and portfolio of businesses. This is a build-oriented ...

We are looking for a Senior GRC Analyst, HIPAA to help mature and operate HIPAA-related security and compliance programs across DoorDash. This role will support multiple ongoing HIPAA workstreams ...

Senior GRC Analyst

New York, NY · On-site

$125K - $160K/yr

About the role We're hiring a Senior GRC Analyst to help scale Radar's security and compliance programs, with a focus on third-party risk and modern SaaS governance. You'll partner with Engineering ...

The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk ...

The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk ...

The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk ...

The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk ...

Senior GRC Analyst

Westerville, OH · On-site

$92K - $121K/yr

We are looking for a Security Governance, Risk, and Compliance (GRC) Analyst to support and mature our security and compliance programs across a large construction organization. This role focuses on ...

The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk ...

GRC Analyst Lead

Richardson, TX · On-site

$104K - $136K/yr

... GRC (Access Control). * A technical understanding of SAP authorization objects and T-codes related to the EWM, TML, FI, MM, GTS, and HR modules. * Ability to analyze complex business systems and ...

New

The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk ...

The Role We Want You For Under the direction of and in collaboration with the GRC Manager, the Sr. GRC Analyst, Risk Management is the primary owner and operational steward of the Enterprise Risk ...

next page

Showing results 1-20

Grc Analyst information

See salary details

$36.5K

$97.7K

$228.5K

How much do grc analyst jobs pay per year?

As of Jul 3, 2026, the average yearly pay for grc analyst in the United States is $97,659.00, according to ZipRecruiter salary data. Most workers in this role earn between $55,000.00 and $111,000.00 per year, depending on experience, location, and employer.

Is GRC a good career?

A GRC (Governance, Risk, and Compliance) analyst plays a key role in managing an organization’s security policies, risk assessments, and regulatory compliance. It is a growing field with demand for professionals skilled in frameworks like ISO, NIST, and tools such as audit management software. The role often requires certifications like CISA or CISSP and offers opportunities for career advancement in cybersecurity and risk management.

Is GRC an entry level job?

GRC Analyst roles can be entry-level or require some experience, depending on the organization. Entry-level positions typically focus on basic compliance, risk management, and security controls, often requiring foundational knowledge of cybersecurity or IT. More advanced roles may demand certifications like CISSP or CISA and prior experience in security or audit functions.

What are the key skills and qualifications needed to thrive in the Grc Analyst position, and why are they important?

To thrive as a GRC Analyst, you need a solid understanding of governance, risk management, and compliance frameworks, often complemented by a degree in information security, business, or a related field. Experience with GRC platforms (like RSA Archer, ServiceNow, or LogicManager), and certifications such as CISA, CRISC, or CISSP are highly valued. Strong analytical thinking, attention to detail, effective communication, and collaboration skills set outstanding GRC Analysts apart. These capabilities are vital for ensuring organizations meet regulatory requirements, identify and mitigate risks, and foster a culture of compliance.

What does a GRC analyst do?

A GRC analyst (Governance, Risk, and Compliance analyst) is responsible for managing an organization’s compliance with regulations, assessing and mitigating risks, and developing governance frameworks. They often use tools like risk management software and require knowledge of industry standards such as ISO or NIST. The role involves analyzing policies, conducting audits, and ensuring security controls are effective.

Do GRC analysts work from home?

GRC analysts can often work remotely, especially if their employer supports telecommuting and the role involves tasks like risk assessment, policy development, and compliance monitoring that can be performed online. However, some positions may require on-site presence for meetings, audits, or access to secure systems.

What are the typical daily responsibilities of a GRC Analyst?

GRC Analysts are responsible for monitoring and assessing organizational policies, procedures, and controls to ensure compliance with internal and external regulations. Their daily tasks often include performing risk assessments, maintaining documentation, supporting audits, analyzing data for potential security gaps, and preparing reports for management. They regularly collaborate with IT, legal, and business teams to remediate vulnerabilities and strengthen compliance programs. This dynamic role requires both independent research and cross-departmental communication to help organizations proactively manage risk and regulatory obligations.

What is a GRC Analyst job?

A GRC (Governance, Risk, and Compliance) Analyst is responsible for ensuring that an organization adheres to regulatory requirements, industry standards, and internal policies. They assess risks, implement compliance programs, and monitor security controls to protect data and systems. Their role often involves working with various departments to identify vulnerabilities, develop risk mitigation strategies, and prepare reports for audits. GRC Analysts play a key role in maintaining regulatory compliance and enhancing an organization's overall security posture.

What cities are hiring for Grc Analyst jobs? Cities with the most Grc Analyst job openings:
What are the most commonly searched types of Grc Analyst jobs? The most popular types of Grc Analyst jobs are:
What states have the most Grc Analyst jobs? States with the most job openings for Grc Analyst jobs include:
What job categories do people searching Grc Analyst jobs look for? The top searched job categories for Grc Analyst jobs are:
Infographic showing various Grc Analyst job openings in the United States as of June 2026, with employment types broken down into 80% Full Time, and 20% Contract. Highlights an 100% In-person job distribution, with an average salary of $97,659 per year, or $47 per hour.
SAP GRC Analyst / SAP Security Analyst

SAP GRC Analyst / SAP Security Analyst

Anveta

Richardson, TX • On-site

Other

Posted 10 days ago


Job description

SAP GRC Analyst / SAP Security Analyst

Location: Monday - Friday - Onsite in Richardson, TX Position Overview

We are seeking an experienced SAP GRC Analyst to serve as the critical link between IT and business stakeholders, ensuring a secure, compliant, and scalable SAP environment. This role is responsible for supporting SAP Governance, Risk, and Compliance (GRC) initiatives, conducting security and compliance assessments, and helping to identify, evaluate, and mitigate access and segregation of duties (SoD) risks across the organization. The ideal candidate will possess strong SAP GRC Access Control expertise, a deep understanding of SAP security concepts, and the ability to collaborate effectively with both technical and business teams.

Key Responsibilities
  • Support ongoing SAP GRC initiatives, including ruleset governance, Segregation of Duties (SoD) analysis, and compliance reporting.
  • Review, maintain, and enhance SAP GRC rulesets to align with evolving business processes and organizational requirements.
  • Refine authorization object and field-level ruleset logic to minimize false positives while maintaining comprehensive risk coverage.
  • Analyze security risks and recommend improvements to strengthen SAP controls and compliance posture.
Access Control & Risk Management
  • Review and evaluate SAP access requests to ensure appropriate role assignments and adherence to the principle of least privilege.
  • Assess and validate mitigating controls to confirm they effectively address identified access and compliance risks.
  • Identify security and compliance risks associated with system enhancements, projects, and business process changes.
  • Partner with business and IT stakeholders to implement appropriate controls and risk mitigation strategies.
Audit, Compliance & Reporting
  • Support internal and external audits by gathering, analyzing, and providing required security and compliance documentation.
  • Prepare reports and metrics related to SAP security, access controls, SoD conflicts, and compliance activities.
  • Assist with ongoing monitoring and remediation of compliance findings and security risks.
Collaboration & Leadership
  • Serve as a trusted advisor to business partners and IT teams on SAP security and compliance matters.
  • Communicate complex security concepts to non-technical stakeholders and provide guidance on appropriate access solutions.
  • Mentor junior team members and contribute to continuous improvement initiatives within the SAP security and compliance function.
Required Qualifications
  • Bachelor's degree in Information Systems, Computer Science, Accounting, Finance, or a related field, or an equivalent combination of education and experience.
  • 5+ years of experience in information security, SAP security, compliance, or related disciplines.
  • 3+ years of direct hands-on experience with SAP GRC and/or SAP Security.
  • Strong experience administering and supporting SAP GRC Access Control.
  • Solid understanding of SAP authorization concepts, authorization objects, roles, profiles, and transaction codes (T-codes).
  • Experience supporting SAP modules including: Extended Warehouse Management (EWM), Treasury Management (TML), Finance (FI), Materials Management (MM), Global Trade Services (GTS), Human Resources (HR).
  • Proven ability to analyze complex business processes and identify security, compliance, and control risks.
  • Strong communication and interpersonal skills with the ability to influence stakeholders and explain access-related decisions.
  • Experience working with auditors, compliance teams, and risk management functions.
Preferred Qualifications
  • Experience with SAP Ariba or other procurement platforms.
  • Knowledge of SAP S/4HANA security concepts and best practices.
  • Experience with SAP audit, compliance, and risk management frameworks.
  • Prior experience mentoring team members or leading security/compliance initiatives.
What Success Looks Like
  • Maintaining a secure and compliant SAP environment.
  • Reducing unnecessary SoD conflicts and false positives.
  • Ensuring timely and effective access reviews and risk mitigation.
  • Building strong partnerships between IT, security, audit, and business stakeholders.