Operational Risk Analyst -Security Governance & Risk Issues Management Location: Merrifield VA ... Work within the Logic Manager (GRC) platform * Support metrics and reporting focused on issues and ...
Operational Risk Analyst -Security Governance & Risk Issues Management Location: Merrifield VA ... Work within the Logic Manager (GRC) platform * Support metrics and reporting focused on issues and ...
As a Senior Risk Analyst on the AWS Sustainability Controllership Team, you will support the design ... is building AI-powered GRC tools and next-generation dashboards at scale. - Strong career ...
As a Senior Risk Analyst on the AWS Sustainability Controllership Team, you will support the design ... is building AI-powered GRC tools and next-generation dashboards at scale. - Strong career ...
As a Senior Risk Analyst on the AWS Sustainability Controllership Team, you will support the design ... is building AI-powered GRC tools and next-generation dashboards at scale. - Strong career ...
As a Senior Risk Analyst on the AWS Sustainability Controllership Team, you will support the design ... is building AI-powered GRC tools and next-generation dashboards at scale. - Strong career ...
Share Enterprise Cybersecurity AI Risk Analyst The Opportunity: Cyber threats are everywhere, and ... Experience with GRC practices, including policy alignment, control expectations, exception handling ...
Share Enterprise Cybersecurity AI Risk Analyst The Opportunity: Cyber threats are everywhere, and ... Experience with GRC practices, including policy alignment, control expectations, exception handling ...
Join us today. Our Financial Management & Business Analysis Portfolio supports the U.S. Army ... SPA has an immediate need for SIPR Governance, Risk, and Compliance (GRC) & Security Analyst within ...
Join us today. Our Financial Management & Business Analysis Portfolio supports the U.S. Army ... SPA has an immediate need for SIPR Governance, Risk, and Compliance (GRC) & Security Analyst within ...
Principal IT Risk Management Analyst
Herndon, VA ยท On-site +1
The Principal IT Risk Management Analyst is a senior leader responsible for advancing the ... Hands-on experience with GRC platforms and workflow automation tools (e.g., Archer, ServiceNow GRC ...
Principal IT Risk Management Analyst
Herndon, VA ยท On-site +1
The Principal IT Risk Management Analyst is a senior leader responsible for advancing the ... Hands-on experience with GRC platforms and workflow automation tools (e.g., Archer, ServiceNow GRC ...
Enterprise Cybersecurity AI Risk Analyst The Opportunity: Cyber threats are everywhere, and the ... Experience with GRC practices, including policy alignment, control expectations, exception handling ...
Enterprise Cybersecurity AI Risk Analyst The Opportunity: Cyber threats are everywhere, and the ... Experience with GRC practices, including policy alignment, control expectations, exception handling ...
Enterprise Cybersecurity AI Risk Analyst The Opportunity: Cyber threats are everywhere, and the ... Experience with GRC practices, including policy alignment, control expectations, exception handling ...
Enterprise Cybersecurity AI Risk Analyst The Opportunity: Cyber threats are everywhere, and the ... Experience with GRC practices, including policy alignment, control expectations, exception handling ...
... GRC efforts. This position is 100% Onsite and not open for Remote. Senior Analyst, Cybersecurity Governance, Risk and Compliance Responsibilities: - Review and understand current IT Risk Management ...
... GRC efforts. This position is 100% Onsite and not open for Remote. Senior Analyst, Cybersecurity Governance, Risk and Compliance Responsibilities: - Review and understand current IT Risk Management ...
Expertise in compliance management, internal or external audit, and GRC platforms is strongly ... Partner as appropriate with other Forrester analysts on broader risk topics: risk quantification ...
Expertise in compliance management, internal or external audit, and GRC platforms is strongly ... Partner as appropriate with other Forrester analysts on broader risk topics: risk quantification ...
As a Senior Risk Analyst on the AWS Sustainability Controllership Team, you will support the design ... is building AI-powered GRC tools and next-generation dashboards at scale. - Strong career ...
As a Senior Risk Analyst on the AWS Sustainability Controllership Team, you will support the design ... is building AI-powered GRC tools and next-generation dashboards at scale. - Strong career ...
... GRC)/Risk Management Tools such as Bwise, ServiceNow, or similar platforms. * Review, develop and communicate divisional risk and control assessments. * Assist management in gathering, analyzing ...
... GRC)/Risk Management Tools such as Bwise, ServiceNow, or similar platforms. * Review, develop and communicate divisional risk and control assessments. * Assist management in gathering, analyzing ...
... GRC)/Risk Management Tools such as Bwise, ServiceNow, or similar platforms. * Review, develop and communicate divisional risk and control assessments. * Assist management in gathering, analyzing ...
... GRC)/Risk Management Tools such as Bwise, ServiceNow, or similar platforms. * Review, develop and communicate divisional risk and control assessments. * Assist management in gathering, analyzing ...
Senior Consultant - IT Governance, Risk & Compliance (GRC)
Ashburn, VA ยท On-site
$90K - $139K/yr
Conduct risk assessments, control gap analyses, and maturity evaluations aligned to industry frameworks (NIST CSF, ISO 27001, SOC 2, COBIT, CMMC, FedRAMP) * Develop and maintain GRC deliverables ...
Quick apply
Senior Consultant - IT Governance, Risk & Compliance (GRC)
Ashburn, VA ยท On-site
$90K - $139K/yr
Conduct risk assessments, control gap analyses, and maturity evaluations aligned to industry frameworks (NIST CSF, ISO 27001, SOC 2, COBIT, CMMC, FedRAMP) * Develop and maintain GRC deliverables ...
Senior Consultant - IT Governance, Risk & Compliance (GRC)
Ashburn, VA ยท On-site
$90K - $139K/yr
Conduct risk assessments, control gap analyses, and maturity evaluations aligned to industry frameworks (NIST CSF, ISO 27001, SOC 2, COBIT, CMMC, FedRAMP) * Develop and maintain GRC deliverables ...
Senior Consultant - IT Governance, Risk & Compliance (GRC)
Ashburn, VA ยท On-site
$90K - $139K/yr
Conduct risk assessments, control gap analyses, and maturity evaluations aligned to industry frameworks (NIST CSF, ISO 27001, SOC 2, COBIT, CMMC, FedRAMP) * Develop and maintain GRC deliverables ...
SIPR Governance, Risk, and Compliance (GRC) & Security Specialis with Security Clearance
Arlington, VA ยท On-site
Join us today. Our Financial Management & Business Analysis Portfolio supports the U.S. Army ... SPA has an immediate need for SIPR Governance, Risk, and Compliance (GRC) & Security Analyst within ...
SIPR Governance, Risk, and Compliance (GRC) & Security Specialis with Security Clearance
Arlington, VA ยท On-site
Join us today. Our Financial Management & Business Analysis Portfolio supports the U.S. Army ... SPA has an immediate need for SIPR Governance, Risk, and Compliance (GRC) & Security Analyst within ...
Senior Analyst, Cybersecurity GRC
Washington, DC ยท On-site
$113K - $146K/yr
Senior Analyst, Cybersecurity GRC Responsibilities: - Review and understand current IT Risk Management (ITRM) program framework and associated policies, standards, procedures, and processes ...
Senior Analyst, Cybersecurity GRC
Washington, DC ยท On-site
$113K - $146K/yr
Senior Analyst, Cybersecurity GRC Responsibilities: - Review and understand current IT Risk Management (ITRM) program framework and associated policies, standards, procedures, and processes ...
Pncpl GRC Analyst
Herndon, VA ยท On-site
The Principal Governance, Risk, & Compliance (GRC) Analyst is an Individual contributor (IC) role that reports to the Manager of GRC. This role is within the team responsible for implementing and ...
Pncpl GRC Analyst
Herndon, VA ยท On-site
The Principal Governance, Risk, & Compliance (GRC) Analyst is an Individual contributor (IC) role that reports to the Manager of GRC. This role is within the team responsible for implementing and ...
Configure and implement SAP GRC Access Control capabilities, including Access Risk Analysis, Access Request Management, Emergency Access Management, and Business Role Management * Support SAP GRC ...
Configure and implement SAP GRC Access Control capabilities, including Access Risk Analysis, Access Request Management, Emergency Access Management, and Business Role Management * Support SAP GRC ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC ยท Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Familiarity with GRC platforms (e.g., OneTrust, ServiceNow IRM, RSA Archer) and vendor risk tooling ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC ยท Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Familiarity with GRC platforms (e.g., OneTrust, ServiceNow IRM, RSA Archer) and vendor risk tooling ...
Grc Risk Analyst information
What is the difference between Grc Risk Analyst vs Compliance Analyst?
| Aspect | Grc Risk Analyst | Compliance Analyst |
|---|---|---|
| Certifications | ISO 31000, FRM, CRISC | ISO 19600, CCEP, CISA |
| Work Environment | Risk management teams, corporate offices | Regulatory departments, corporate offices |
| Industry Usage | Finance, banking, insurance, corporate risk | Financial services, healthcare, manufacturing |
| Job Focus | Identifying, assessing, and mitigating risks across enterprise | Ensuring compliance with laws and regulations |
While both roles involve regulatory and risk considerations, a Grc Risk Analyst focuses on enterprise-wide risk management strategies, whereas a Compliance Analyst concentrates on adherence to specific laws and regulations. Both roles require similar certifications and often work in overlapping industries, but their core responsibilities differ in scope and focus.
What are GRC Risk Analysts?
What are the key skills and qualifications needed to thrive as a GRC Risk Analyst, and why are they important?
What are some common challenges a GRC Risk Analyst might face when implementing new risk management frameworks within an organization?

Operational Risk Analyst -Security Governance & Risk Issues Management
Merrifield, VA โข On-site
Full-time
Re-posted 11 days ago
Job description
Details:
Operational Risk Analyst -Security Governance & Risk Issues Management
Location: Merrifield VA - Hybrid
Duration: 12 months
Basic Purpose
This role is specifically designated as an Operational Risk Management (ORM) role for Issue Management. The Contractor Analyst will be experienced in risk management, issue management, risk and control self-assessments (RCSA), and have an understanding of security standards, and familiarity with risk and compliance (GRC) tool operations. The Analyst will understand how the ORM framework applies to the business and be able to articulate the need for issue management. The Contractor Analyst will be responsible for supporting the daily operations of issue management and partnering with groups across security, IT and business risk teams. A successful candidate will be required to research issues, support the business in ensuring issues are captured timely, ensure issues are correctly risk assessed and remediation plans are documented and align to the underlying root cause.
Responsibilities
- Attend meetings with stakeholders within security, IT and across the credit union to assess and encourage the need for submitting issues impacting information security.
- Aid in the development of remediation plans.
- Facilitate root cause analysis
- Assess the impact and likelihood of an issue and provide justification for the ratings
- Leverage various communication channels to obtain required information.
- Work within the Logic Manager (GRC) platform
- Support metrics and reporting focused on issues and event processes.
- Aid business partners in understanding the importance of issue management.
- Keep current with Information Security best practices and industry trends, and communicate/apply these practices to policy improvements and compliance actions.
- Perform other duties as assigned
Qualifications
- Experience in the credit union/financial services industry with a focus on regulatory frameworks, information security assessments, and remediation activities
- Experience managing issues from identification to remediation
- IT Audit or first line IT or security risk experience a plus
- Desired knowledge of NCUA, FFIEC, BSA/AML, NIST (including the Cyber Security Framework and 800 Series)
- Effective planning and organizational skills
- Effective research, analytical and problem solving skills
- Strong verbal, written and interpersonal communication skills, including technical writing
- Desired Bachelor Degree in business, information systems or related field or equivalent work/military experience
- Ability to present findings and conclusions clearly and concisely
- Experience in working with all levels of staff, management, stakeholders, and third parties
- Ability to build effective relationships through rapport, trust, diplomacy, and tact
- Strong word processing and spreadsheet software skills
About NAVA Software Solutions
Sourced by ZipRecruiter
NAVA is a strategic partner for companies seeking to develop or customize software and products. Our team of experts leverages cutting-edge technology and deep industry knowledge to provide customized solutions that drive business success. Whether you're looking to improve your operations, increase efficiency, or bring a new product to market, NAVA has the expertise and resources to help you achieve your goals. Trust us to be your partner in software and product development.
Industry
It services
Company size
51 - 200 Employees
Headquarters location
Rocky Hill, CT, US