The Information Services (IS) Risk Analyst is responsible for identifying, assessing, documenting ... Maintain the GRC system to ensure compliance and proper operation of GRC functions. * Identify and ...
The Information Services (IS) Risk Analyst is responsible for identifying, assessing, documenting ... Maintain the GRC system to ensure compliance and proper operation of GRC functions. * Identify and ...
Sr Risk Analyst
Dallas, TX · On-site
You have 8+ years supporting GRC programs in Information Security or Information Technology * You ... Risk Analyst: * Working with a focus to level-up Information Security GRC at Crunchyroll
Sr Risk Analyst
Dallas, TX · On-site
You have 8+ years supporting GRC programs in Information Security or Information Technology * You ... Risk Analyst: * Working with a focus to level-up Information Security GRC at Crunchyroll
The Analyst independently leads risk assessments and partners closely with IT, OT, audit, andsenior ... Experience using Governance, Risk, and Compliance (GRC) tools and risk reporting dashboards.
The Analyst independently leads risk assessments and partners closely with IT, OT, audit, andsenior ... Experience using Governance, Risk, and Compliance (GRC) tools and risk reporting dashboards.
Risk Analyst
Omaha, NE · On-site
Exposure to SOX, Model Risk Management (SR 11-7), AI Risk Management (NIST AI RMF), or IT GRC ... Strong analytical and critical thinking skills with attention to detail * Ability to translate ...
Risk Analyst
Omaha, NE · On-site
Exposure to SOX, Model Risk Management (SR 11-7), AI Risk Management (NIST AI RMF), or IT GRC ... Strong analytical and critical thinking skills with attention to detail * Ability to translate ...
The Analyst independently leads risk assessments and partners closely with IT, OT, audit, andsenior ... Experience using Governance, Risk, and Compliance (GRC) tools and risk reporting dashboards.
The Analyst independently leads risk assessments and partners closely with IT, OT, audit, andsenior ... Experience using Governance, Risk, and Compliance (GRC) tools and risk reporting dashboards.
The Information Services (IS) Risk Analyst is responsible for identifying, assessing, documenting ... Maintain the GRC system to ensure compliance and proper operation of GRC functions. * Identify and ...
The Information Services (IS) Risk Analyst is responsible for identifying, assessing, documenting ... Maintain the GRC system to ensure compliance and proper operation of GRC functions. * Identify and ...
Senior Cyber Risk Analyst
Chicago, IL · On-site
$110K - $130K/yr
As a Senior Cyber Risk Analyst at Tempus AI, you will be the driving force behind our Cyber Risk ... Experience: 5+ years of technical experience in information security, risk management, or GRC ...
Senior Cyber Risk Analyst
Chicago, IL · On-site
$110K - $130K/yr
As a Senior Cyber Risk Analyst at Tempus AI, you will be the driving force behind our Cyber Risk ... Experience: 5+ years of technical experience in information security, risk management, or GRC ...
Enterprise Risk Analyst
Denver, CO · On-site
Your Mission We are seeking a driven and detail-oriented Enterprise Risk Analyst to support two ... Qualifications * 5+ years of experience in enterprise risk management, GRC, cybersecurity risk ...
Enterprise Risk Analyst
Denver, CO · On-site
Your Mission We are seeking a driven and detail-oriented Enterprise Risk Analyst to support two ... Qualifications * 5+ years of experience in enterprise risk management, GRC, cybersecurity risk ...
Cybersecurity Senior GRC Analyst
$96K - $123K/yr
Job Summary The Governance Risk & Compliance (GRC) Cybersecurity Senior Analyst plays a critical role in ensuring that UGI Utilities Inc. operates within its regulatory, legal, and compliance ...
Cybersecurity Senior GRC Analyst
$96K - $123K/yr
Job Summary The Governance Risk & Compliance (GRC) Cybersecurity Senior Analyst plays a critical role in ensuring that UGI Utilities Inc. operates within its regulatory, legal, and compliance ...
Security Analyst (GRC Lead, SOX, GRC, DB controls) || Atlanta, GA (Onsite ) || Full time
Atlanta, GA · On-site
* Information Security, GRC, Risk Management, or IT Audit. * Strong hands-on experience with SOX IT General Controls (ITGC). * Solid understanding of Governance, Risk, and Compliance methodologies.
New
Security Analyst (GRC Lead, SOX, GRC, DB controls) || Atlanta, GA (Onsite ) || Full time
Atlanta, GA · On-site
* Information Security, GRC, Risk Management, or IT Audit. * Strong hands-on experience with SOX IT General Controls (ITGC). * Solid understanding of Governance, Risk, and Compliance methodologies.
New
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
Quick apply
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
Senior GRC Analyst
Orlando, FL · On-site
Senior GRC Analyst Morgan & Morgan | Risk & Resilience Program Reports To: Director of Business Continuity Department: Information Security / Risk & Resilience Type: Full-Time The Opportunity Morgan ...
Senior GRC Analyst
Orlando, FL · On-site
Senior GRC Analyst Morgan & Morgan | Risk & Resilience Program Reports To: Director of Business Continuity Department: Information Security / Risk & Resilience Type: Full-Time The Opportunity Morgan ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
Quick apply
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
IT Risk Analyst
Buffalo, NY · On-site
Kaleida Health is dedicated to advancing community health and is seeking an IT Risk Analyst. In ... Responsibilities : • Design and implement GRC's IT governance and risk management strategy • ...
IT Risk Analyst
Buffalo, NY · On-site
Kaleida Health is dedicated to advancing community health and is seeking an IT Risk Analyst. In ... Responsibilities : • Design and implement GRC's IT governance and risk management strategy • ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
The GRC Analyst is a member of the Governance, Risk & Compliance function within the Global Information Security Office and supports the implementation of company?wide security governance, risk ...
Grc Risk Analyst information
See salary details
$15.38 - $19.97
3% of jobs
$19.97 - $24.56
7% of jobs
$24.56 - $29.15
12% of jobs
$30.05 is the 25th percentile. Wages below this are outliers.
$29.15 - $33.74
15% of jobs
$33.74 - $38.33
13% of jobs
The median wage is $38.48 / hr.
$38.33 - $42.92
16% of jobs
$42.92 - $47.51
8% of jobs
$48.08 is the 75th percentile. Wages above this are outliers.
$47.51 - $52.10
11% of jobs
$52.10 - $56.69
6% of jobs
$56.69 - $61.28
6% of jobs
$61.28 - $65.87
3% of jobs
$15
$40
$65
How much do grc risk analyst jobs pay per hour?
What is the difference between Grc Risk Analyst vs Compliance Analyst?
| Aspect | Grc Risk Analyst | Compliance Analyst |
|---|---|---|
| Certifications | ISO 31000, FRM, CRISC | ISO 19600, CCEP, CISA |
| Work Environment | Risk management teams, corporate offices | Regulatory departments, corporate offices |
| Industry Usage | Finance, banking, insurance, corporate risk | Financial services, healthcare, manufacturing |
| Job Focus | Identifying, assessing, and mitigating risks across enterprise | Ensuring compliance with laws and regulations |
While both roles involve regulatory and risk considerations, a Grc Risk Analyst focuses on enterprise-wide risk management strategies, whereas a Compliance Analyst concentrates on adherence to specific laws and regulations. Both roles require similar certifications and often work in overlapping industries, but their core responsibilities differ in scope and focus.
What are GRC Risk Analysts?
What are the key skills and qualifications needed to thrive as a GRC Risk Analyst, and why are they important?
What are some common challenges a GRC Risk Analyst might face when implementing new risk management frameworks within an organization?

Full-time
Medical, Dental, Vision, Retirement
Posted 26 days ago
Job description
The Information Services (IS) Risk Analyst is responsible for identifying, assessing, documenting, and monitoring information technology risks across the organization. This role supports the execution and ongoing maturity of the IT risk management and governance program by maintaining accurate risk documentation, evaluating the design and effectiveness of IT controls, and tracking remediation. The role also supports compliance and audit activities by providing risk analysis, evidence validation, and risk-related reporting. The IS Risk Analyst will report directly to the Risk and Compliance Manager.
Headquartered in Fort Worth, TX, TTI, Inc. is the world’s leading authorized distributor of passive, connector, electromechanical, and discrete components. Celebrating more than 50 years, this Berkshire Hathaway company is ever-growing and has over 100 locations in North America, Europe, and Asia! Join a winning team in a growing global organization!
Our Senior IS Risk Analyst:
- Identify, assess, and document IT risks using approved risk methodologies.
- Ensure accurate and up-to-date IT risk registers and related documentation.
- Evaluate and determine the design and effectiveness of IT controls and identify gaps.
- Track risk remediation activities and validate supporting evidence.
- Partner with stakeholders to ensure clear risk ownership and accountability.
- Lead compliance initiatives and audit activities with timely documentation.
- Communicate IT risks and trends in clear, business-focused language.
- Drive alignment with applicable frameworks, policies, and standards.
- Contribute to continuous improvement of IT risk and Governance, Risk and Compliance (GRC) processes.
- Participate in security project planning and execute assigned tasks.
- Maintain the GRC system to ensure compliance and proper operation of GRC functions.
- Identify and drive process improvement by interfacing with internal business partners and leveraging prior IT audit experience to add value.
- Experience designing and implementing AI-enabled automation solutions to support and enhance GRC and risk management processes.
Education and Experience Requirements:
- Bachelor’s degree in computer science, Cybersecurity, Risk Management, or related degree or equivalent combination of education and experience.
- 7+ years of experience preferred in IT or information security risk management, compliance, audit, or GRC with a strong understanding of risk management frameworks, security controls, and risk assessment methodologies.
What we look for:
- IT risk identification, analysis, and documentation
- Control design and operating effectiveness evaluation
- Risk scoring methodologies (qualitative and/or quantitative)
- Technical writing and clear risk articulation
- Strong analytical, organizational, and problem solving skills
- Experience maintaining risk registers, POA&Ms, and remediation tracking
- Time management and prioritization in a multi-initiative environment.
- Familiarity with one or more of the following frameworks or standards:
- NIST SP 800-171, NIST SP 800-30, ISO/IEC 27001
- Understanding of common IT controls domains
- Experience using GRC platforms
- Proficiency with Microsoft Excel, Word, PowerPoint, and collaboration tools
- Experience designing and implementing AI-enabled process automation solutions
- Any Cyber Security certifications (e.g. CISA, CRISC), preferred
- Primarily sedentary role requiring prolonged periods of sitting at a desk and working on a computer
- Must have the ability to position self to maintain computers and various network equipment in the buildings, including under desks, in the server rooms, and anywhere cabling installation and maintenance would be required for troubleshooting and optimal organizational connectivity and usage
- Minimal lifting requirements (generally up to 10 pounds, such as a laptop or documents)
This is a summary of the primary accountabilities and requirements for this position. The company reserves the right to modify or amend accountabilities and requirements at any time at its sole discretion based on business needs. Any part of this job description is subject to possible modification to reasonably accommodate individuals with disabilities.
Please note that we do not offer relocation assistance for this position. Candidates must be local or willing to relocate at their own expense.
This position requires the use of information or access to hardware that is subject to the International Traffic in Arms Regulations (ITAR). To perform the position, you must be a U.S. Person as defined by ITAR. ITAR defines a U.S. Person as a U.S. Citizen, U.S. Permanent Resident (i.e., ‘Green Card Holder’), Political Asylee, or Refugee.
Visa sponsorship is not available for this role. Only candidates authorized to work in the United States will be considered.
What we offer our team members:
- A great benefits package that includes (but is not limited to) Medical/ Dental/ Vision, 401(k)/Roth plan with matching, Healthcare Savings Accounts
- Educational Assistance (Tuition Reimbursement)
- Ongoing training throughout your employment with opportunities to participate in professional and personal development programs
- A strong focus on giving back to our communities through philanthropic opportunities
Want to learn more? Visit us at Working at TTI, Inc.
We are an Equal Opportunity Employer, and we support protected veterans and individuals with disabilities through our affirmative action program.