1

Grc Risk Analyst Jobs (NOW HIRING)

The GRC Risk Analyst, a thought leader residing within our security organization, is responsible for implementing and maintaining the risk management framework and program. This position will be part ...

New

The GRC Risk Analyst, a thought leader residing within our security organization, is responsible for implementing and maintaining the risk management framework and program. This position will be part ...

New

The GRC Risk Manager, a thought leader residing within our security organization, is responsible ... Strong analytical and problem-solving skills. * Strong written and verbal communication skills ...

The Opportunity We are hiring a Security GRC & Risk Analyst to own the governance, risk, and compliance execution layer across a holding company and portfolio of businesses. This is a build-oriented ...

The GRC Risk Manager, a thought leader residing within our security organization, is responsible ... Strong analytical and problem-solving skills. * Strong written and verbal communication skills ...

SAP Risk Reporting Specialist

Maumee, OH · On-site

$92K/yr

The ideal consultant has strong hands-on experience with SAP S/4HANA reporting and analytics , and deep exposure to SAP Treasury and Risk Management (TRM), SAP GRC Risk Management, SAP Analytics ...

GRC Risk Manager

Austin, TX · Hybrid

$164K - $223K/yr

GRC Risk Manager This is a high-impact individual contributor role for a deeply technical risk ... Strong analytical capability, using data and metrics to drive prioritization and decision-making

GRC Risk Manager

Austin, TX · On-site

$164K - $223K/yr

GRC Risk Manager This is a high-impact individual contributor role for a deeply technical risk ... Strong analytical capability, using data and metrics to drive prioritization and decision-making

The Opportunity We are hiring a Security GRC & Risk Analyst to own the governance, risk, and compliance execution layer across a holding company and portfolio of businesses. This is a build-oriented ...

Risk Analyst Enterprise Risk Management | Banking ----- This position does not offer remote access ... Familiarity with Governance, Risk, and Compliance (GRC) systems preferred * Professional ...

Risk Analyst Enterprise Risk Management | Banking ----- This position does not offer remote access ... Familiarity with Governance, Risk, and Compliance (GRC) systems preferred * Professional ...

Assisting in the upkeep of governance, risk and compliance (GRC) software applications Interacting with team members and department/division personnel on other GRC related tasks Documenting data and ...

Support the third-party risk assessment process through the utilization of GRC tools by identifying ... Strong analytical, organizational, and time management skills, with the ability to interpret data ...

The Global GRC Senior Analyst will report directly to the Global Cybersecurity Governance, Risk and Compliance Manager. This role involves collaborating with cross-functional teams to design ...

next page

Showing results 1-20

Grc Risk Analyst information

See salary details

$15

$40

$65

How much do grc risk analyst jobs pay per hour?

As of Jul 10, 2026, the average hourly pay for grc risk analyst in the United States is $40.49, according to ZipRecruiter salary data. Most workers in this role earn between $29.81 and $49.28 per hour, depending on experience, location, and employer.

What is the difference between Grc Risk Analyst vs Compliance Analyst?

AspectGrc Risk AnalystCompliance Analyst
CertificationsISO 31000, FRM, CRISCISO 19600, CCEP, CISA
Work EnvironmentRisk management teams, corporate officesRegulatory departments, corporate offices
Industry UsageFinance, banking, insurance, corporate riskFinancial services, healthcare, manufacturing
Job FocusIdentifying, assessing, and mitigating risks across enterpriseEnsuring compliance with laws and regulations

While both roles involve regulatory and risk considerations, a Grc Risk Analyst focuses on enterprise-wide risk management strategies, whereas a Compliance Analyst concentrates on adherence to specific laws and regulations. Both roles require similar certifications and often work in overlapping industries, but their core responsibilities differ in scope and focus.

What are GRC Risk Analysts?

GRC Risk Analysts are professionals who specialize in Governance, Risk, and Compliance (GRC) within an organization. They assess and manage risks related to business operations, ensure compliance with relevant laws and regulations, and help implement policies and controls to mitigate potential threats. These analysts work closely with management to identify vulnerabilities, develop risk management strategies, and monitor the effectiveness of compliance programs. Their goal is to protect the organization from financial, legal, and reputational harm while supporting business objectives.

What are the key skills and qualifications needed to thrive as a GRC Risk Analyst, and why are they important?

To thrive as a GRC (Governance, Risk, and Compliance) Risk Analyst, you need a solid understanding of risk management principles, regulatory requirements, and compliance frameworks, often supported by a degree in information security, business, or a related field. Familiarity with GRC platforms (such as RSA Archer or MetricStream), risk assessment methodologies, and certifications like CRISC or CISA is highly valuable. Strong analytical thinking, attention to detail, and effective communication skills help you identify risks and convey findings to stakeholders. These skills are critical for ensuring organizational compliance, minimizing risk exposure, and supporting informed decision-making.

What are some common challenges a GRC Risk Analyst might face when implementing new risk management frameworks within an organization?

A GRC Risk Analyst often encounters challenges such as resistance to change from stakeholders, integrating new frameworks with existing processes, and ensuring consistent understanding across departments. Aligning risk management practices with organizational goals while adhering to regulatory requirements can also be complex. Success in this role requires strong communication skills, adaptability, and the ability to educate and collaborate with team members from diverse backgrounds.
More about Grc Risk Analyst jobs
What cities are hiring for Grc Risk Analyst jobs? Cities with the most Grc Risk Analyst job openings:
What states have the most Grc Risk Analyst jobs? States with the most job openings for Grc Risk Analyst jobs include:
What job categories do people searching Grc Risk Analyst jobs look for? The top searched job categories for Grc Risk Analyst jobs are:
Infographic showing various Grc Risk Analyst job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $84,210 per year, or $40.5 per hour.

GRC Risk Analyst III

SHEIN

Los Angeles, CA

Other

Medical, Dental, Vision, Life, Retirement, PTO

Posted yesterday

New


Job description

About SHEIN 

SHEIN Technology is a U.S. technology company. Founded in 2012, SHEIN is a leading global online retailer with operations in Guangzhou, Los Angeles and Singapore, along with other key markets. SHEIN reaches consumers across more than 150 countries and regions around the world. We place a premium on choice, delivering more than 6,000 new fashion, beauty and lifestyle products daily with more than 600,000 items available. Our mission is to help people express their individuality through the latest trends that are accessible and affordable.

To learn more about SHEIN, follow us at shein.com, instagram.com/sheinofficial and youtube.com/shein. 

Position Summary 

SHEIN Global Security & Risk Management is a global security organization that oversees security infrastructure, risk management, data privacy, governance and regulatory compliance across SHEIN's global footprint. It is composed of a team of security professionals, innovators and thought leaders that have had decades of global security experience, led large scale transformations, and served in Fortune 500 executive roles.

Here, innovation isn't simply about protecting and defending our company. We develop solutions that are practical today and scalable tomorrow; and we create collaborative teams dedicated to innovation across each of our businesses to share our common values and vision.

The GRC Risk Analyst, a thought leader residing within our security organization, is responsible for implementing and maintaining the risk management framework and program. This position will be part of a team of governance, risk, and compliance experts and work with technology and legal partners and business units to meet our global risk management needs.

The ideal candidate should have extensive experience in conducting security risk assessments, a deep understanding of general security technologies and best practices, and practical knowledge of global data privacy laws and regulations. This role must collaborate effectively with development, engineering and operations counterparts as well as internal and external partners to identify, articulate, prioritize, manage, and monitor security risks to protect SHEIN data, services, and information assets.

 Job Responsibilities 

  •  Conduct security risk assessments of business units, critical projects, processes, vendors and information assets to address threats, changes to systems and/or applications, process improvement initiatives, and other related business needs.
  • Document, track, monitor, and report risk assessment and risk management activities to bring appropriate visibility to stakeholders and leadership.
  • Collaboratively work with colleagues globally to develop, implement, and mature security compliance and control frameworks and risk methodologies.
  • Work closely with technology and legal partners and business units to ensure appropriate security and data protection requirements are incorporated into third-party engagements.
  • Maintain a current and comprehensive understanding of relevant industry standards to incorporate into the risk management strategy, framework, and program.

 Job Requirements 

  • A minimum of 5 years of experience in security risk management, including business impact analysis, risk assessment and treatment, risk metrics and trend analysis.
  • Possess a bachelor's degree or higher in the field of information security, engineering, computer science or equivalent advance technology field of study.
  • Relevant certifications, such as CISSP, CIPP, CISM, CISA, ISO 27001 Lead Auditor are highly desired Strong knowledge of security and privacy standards, regulations and guidelines such as ISO 27k, NIST, CCM, PCI DSS, GDPR, CCPA.
  • Experience developing and deploying risk management frameworks and programs, preferably with international experience in an e-commerce or technology related industry.
  • Practical knowledge and experience working with threat modeling frameworks such as STRIDE, MITRE ATT&CK, OCTAVE desirable.
  • Strong analytical and problem-solving skills.
  • Strong written and verbal communication skills, with the ability to translate complex and technical issues to all levels of personnel.
  • Detail oriented and highly organized, with the ability to thrive in a fast-paced environment and prioritize accordingly.
  • High level of personal integrity, with the ability to professionally handle confidential matters and exudes the appropriate level of judgment and maturity.

Benefits and Perks 

  • Bonus eligible
  • Healthcare (medical, dental, vision, prescription drugs) 
  • Health Savings Account with Employer Funding 
  • Flexible Spending Accounts (Healthcare and Dependent care) 
  • Company-Paid Basic Life/AD&D insurance 
  • Company-Paid Short-Term and Long-Term Disability 
  • Voluntary Benefit Offerings (Voluntary Life/AD&D, Hospital Indemnity, Critical Illness, and Accident) 
  • Employee Assistance Program 
  • Business Travel Accident Insurance 
  • 401(k) Savings Plan with discretionary company match and access to a financial advisor  
  • Vacation, paid holidays, floating holiday and sick days   
  • Employee discounts 
  • Free weekly catered lunch 
  • Dog-friendly office (available at select locations) 
  • Free gym access (available at select locations) 
  • Free swag giveaways 
  • Annual Holiday Party 
  • Invitations to pop-ups and other company events 
  • Complimentary daily office snacks and beverages

SHEIN Technology is an equal opportunity employer committed to a diverse workplace environment.

#LI-ED1