The Senior Cybersecurity Risk Management Analyst will support and advance the organization ... GRC management platforms (e.g., ServiceNow, OneTrust); implementation experience a plus. • ...
The Senior Cybersecurity Risk Management Analyst will support and advance the organization ... GRC management platforms (e.g., ServiceNow, OneTrust); implementation experience a plus. • ...
The Senior Cybersecurity Risk Management Analyst, reporting to the Director of Cybersecurity Strategy & GRC, is responsible for supporting and advancing the organization's cybersecurity risk ...
The Senior Cybersecurity Risk Management Analyst, reporting to the Director of Cybersecurity Strategy & GRC, is responsible for supporting and advancing the organization's cybersecurity risk ...
The Senior Cybersecurity Risk Management Analyst, reporting to the Director of Cybersecurity Strategy & GRC, is responsible for supporting and advancing the organization's cybersecurity risk ...
The Senior Cybersecurity Risk Management Analyst, reporting to the Director of Cybersecurity Strategy & GRC, is responsible for supporting and advancing the organization's cybersecurity risk ...
Experience with GRC Platforms, vendor risk tools, and privacy management systems. Certifications ... Ability to apply financial modeling and cost-benefit analysis to inform risk-based decisions.
Experience with GRC Platforms, vendor risk tools, and privacy management systems. Certifications ... Ability to apply financial modeling and cost-benefit analysis to inform risk-based decisions.
Experience with GRC Platforms, vendor risk tools, and privacy management systems. Certifications ... Ability to apply financial modeling and cost-benefit analysis to inform risk-based decisions.
Experience with GRC Platforms, vendor risk tools, and privacy management systems. Certifications ... Ability to apply financial modeling and cost-benefit analysis to inform risk-based decisions.
Experience with GRC Platforms, vendor risk tools, and privacy management systems. Certifications ... Ability to apply financial modeling and cost-benefit analysis to inform risk-based decisions.
Experience with GRC Platforms, vendor risk tools, and privacy management systems. Certifications ... Ability to apply financial modeling and cost-benefit analysis to inform risk-based decisions.
Senior IT Security Analyst
Madison, WI · On-site
$90K - $115K/yr
This Senior Analyst combines deep knowledge of cybersecurity frameworks with hands-on experience in governance, risk, and compliance (GRC) operations, and excels at clear communication and high ...
Senior IT Security Analyst
Madison, WI · On-site
$90K - $115K/yr
This Senior Analyst combines deep knowledge of cybersecurity frameworks with hands-on experience in governance, risk, and compliance (GRC) operations, and excels at clear communication and high ...
Senior Security Compliance Analyst
$96K - $126K/yr
... and GRC teams. * Provide technical expertise in customer meetings and sales engagements ... Solid understanding of Security fundamentals (RBAC, PLP, Auth mechanisms, CIA triad, risk and ...
Senior Security Compliance Analyst
$96K - $126K/yr
... and GRC teams. * Provide technical expertise in customer meetings and sales engagements ... Solid understanding of Security fundamentals (RBAC, PLP, Auth mechanisms, CIA triad, risk and ...
Senior Security Compliance Analyst
$96K - $126K/yr
... and GRC teams. * Provide technical expertise in customer meetings and sales engagements ... Solid understanding of Security fundamentals (RBAC, PLP, Auth mechanisms, CIA triad, risk and ...
Senior Security Compliance Analyst
$96K - $126K/yr
... and GRC teams. * Provide technical expertise in customer meetings and sales engagements ... Solid understanding of Security fundamentals (RBAC, PLP, Auth mechanisms, CIA triad, risk and ...
Senior Database Administrator
$50.25 - $69/hr
... risk. Core Responsibilities Note: This list is not all-inclusive. * Operate with a high degree of ... and GRC teams. * Partner with application development, infrastructure, and business teams to ...
Senior Database Administrator
$50.25 - $69/hr
... risk. Core Responsibilities Note: This list is not all-inclusive. * Operate with a high degree of ... and GRC teams. * Partner with application development, infrastructure, and business teams to ...
Senior Database Administrator
Madison, WI · On-site
$50.25 - $69/hr
... risk. Core Responsibilities Note: This list is not all-inclusive. * Operate with a high degree of ... and GRC teams. * Partner with application development, infrastructure, and business teams to ...
Senior Database Administrator
Madison, WI · On-site
$50.25 - $69/hr
... risk. Core Responsibilities Note: This list is not all-inclusive. * Operate with a high degree of ... and GRC teams. * Partner with application development, infrastructure, and business teams to ...
Grc Risk Analyst information
See Madison, WI salary details
$15.50 - $20.13
3% of jobs
$20.13 - $24.75
7% of jobs
$24.75 - $29.37
12% of jobs
$30.28 is the 25th percentile. Wages below this are outliers.
$29.37 - $34
15% of jobs
$34 - $38.62
13% of jobs
The median wage is $38.78 / hr.
$38.62 - $43.25
16% of jobs
$43.25 - $47.87
8% of jobs
$48.45 is the 75th percentile. Wages above this are outliers.
$47.87 - $52.50
11% of jobs
$52.50 - $57.12
6% of jobs
$57.12 - $61.74
6% of jobs
$61.74 - $66.37
3% of jobs
$15
$40
$66
How much do grc risk analyst jobs pay per hour?
What is the difference between Grc Risk Analyst vs Compliance Analyst?
| Aspect | Grc Risk Analyst | Compliance Analyst |
|---|---|---|
| Certifications | ISO 31000, FRM, CRISC | ISO 19600, CCEP, CISA |
| Work Environment | Risk management teams, corporate offices | Regulatory departments, corporate offices |
| Industry Usage | Finance, banking, insurance, corporate risk | Financial services, healthcare, manufacturing |
| Job Focus | Identifying, assessing, and mitigating risks across enterprise | Ensuring compliance with laws and regulations |
While both roles involve regulatory and risk considerations, a Grc Risk Analyst focuses on enterprise-wide risk management strategies, whereas a Compliance Analyst concentrates on adherence to specific laws and regulations. Both roles require similar certifications and often work in overlapping industries, but their core responsibilities differ in scope and focus.
What are GRC Risk Analysts?
What are the key skills and qualifications needed to thrive as a GRC Risk Analyst, and why are they important?
What are some common challenges a GRC Risk Analyst might face when implementing new risk management frameworks within an organization?

Full-time
Posted 6 days ago
Exact Sciences rating
8.5
Based on 54 frontline employees who took The Breakroom Quiz
19th of 103 rated laboratories
Job description
Exact Sciences is dedicated to changing how the world prevents, detects, and guides treatment for cancer. The Senior Cybersecurity Risk Management Analyst will support and advance the organization’s cybersecurity risk management program, requiring a deep understanding of security and IT risk principles to effectively identify and report cybersecurity risks across the enterprise.
Responsibilities:
• Support cybersecurity risk management activities by assisting with defined stages of the risk management lifecycle and completing assigned analyses under established methodologies.
• Maintain and contribute to the global cybersecurity risk register.
• Assist management by providing input to cybersecurity risk appetite discussions and support implementation and enforcement efforts–making it relevant to the business on a day-to-day basis.
• Aggregate and evaluate cybersecurity risks to support management and leadership reporting, ensuring accuracy and consistency for various global audiences.
• Build trust and effectively facilitate risk identification/analysis/treatment discussions.
• Proactively obtain information on emerging risks and threats and effectively analyze against the risk posture.
• Support the delivery of risk management education by preparing materials, reinforcing frameworks, and responding to stakeholder questions.
• Work with leadership to support the prioritization of initiatives aligned with strategic goals.
• Act as a resource providing training, guidance, and mentoring to less experienced staff.
• Collaborate with stakeholders to remediate visibility and capability gaps and breakdown roadblocks standing in the way of a robust security posture.
• Enable the maturation of the security program functions within the cybersecurity team and with key business partners.
• Research and summarize industry insights and best practices, along with interpreting impact of requirements from governing authorities.
• Uphold company mission and values through accountability, innovation, integrity, quality, and teamwork.
• Support and comply with the company’s Quality Management System policies and procedures.
• Maintain regular and reliable attendance.
• Ability to act with an inclusion mindset and model these behaviors for the organization.
• Ability to travel 10% of working time away from work location, may include overnight/weekend travel.
Qualifications:
Required:
• Bachelor’s Degree in field related to essential duties; or Associate Degree and 2 years of relevant experience; or High School Diploma or General Education Degree (GED) and 4 years of relevant experience.
• 6+ years of professional experience in a cybersecurity or IT governance, risk, compliance, or operations role.
• 1+ years of experience with cybersecurity risk management.
• Demonstrated experience with security risk management and compliance frameworks (e.g., NIST, ISO, HIPAA).
• Experience evaluating risk rating methodologies to appropriately convey the enterprise cybersecurity posture.
• Demonstrable experience conducting risk assessments and facilitating executive level risk discussions.
• Experience managing cybersecurity risks through the risk management lifecycle, in a globally regulated enterprise a plus.
• Solid grasp of security governance, risk, and compliance concepts.
• Technically proficient in performing assigned duties at a high-level of independence under minimal supervision while working within a team environment.
• Demonstrated leadership skills, ability to influence outcomes in a complex environment, where you may/may not have formal reporting responsibility.
• Excellent communication skills, appropriately adapting based on audience needs, through all mediums–verbal, written, presentation, and listening.
• Able to be agile and work with ambiguity.
• Proficient+ in Microsoft Office programs, such as PowerPoint, Excel, Outlook, and Word.
• Demonstrated ability to perform the essential duties of the position with or without accommodation.
• Authorization to work in the United States without sponsorship.
Preferred:
• Relevant certification(s) in the field of cybersecurity, risk, audit, or program/project management.
• Experience contributing to the build and continuous improvement of the risk management environment, in a globally regulated enterprise strongly preferred.
• Experience with enterprise GRC management platforms (e.g., ServiceNow, OneTrust); implementation experience a plus.
• Advanced proficiency in program/project management to drive program build efficiently and effectively.
• Experience in healthcare or biotech industries.
Company:
Exact Sciences offers a portfolio of cancer screening and diagnostic tests that span from early detection to treatment monitoring. It is a sub-organization of Abbott. Founded in 1995, the company is headquartered in Madison, USA, with a team of 5001-10000 employees. The company is currently Late Stage.
What Exact Sciences employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Exact Sciences
Sourced by ZipRecruiter
Industry
Biotechnology research and development
Company size
5,001 - 10,000 Employees
Headquarters location
Madison, WI, US
Year founded
1995