Coordination with IT, Finance, Internal Audit, Cybersecurity, GRC, external audit, and outside advisory firms Qualifications * Relevant experience inIT audit, technology risk, IT controls, SOX ITGC ...
Quick apply
Coordination with IT, Finance, Internal Audit, Cybersecurity, GRC, external audit, and outside advisory firms Qualifications * Relevant experience inIT audit, technology risk, IT controls, SOX ITGC ...
Lead Senior / Manager, Technology Risk & IT Audit
Burlington, MA · On-site
$125K - $180K/yr
Coordination with IT, Finance, Internal Audit, Cybersecurity, GRC, external audit, and outside advisory firms Qualifications * 5 15 years of IT audit, technology risk, IT controls, SOX ITGC, cyber ...
Lead Senior / Manager, Technology Risk & IT Audit
Burlington, MA · On-site
$125K - $180K/yr
Coordination with IT, Finance, Internal Audit, Cybersecurity, GRC, external audit, and outside advisory firms Qualifications * 5 15 years of IT audit, technology risk, IT controls, SOX ITGC, cyber ...
GRC Archer, WDesk, or other risk and compliance platforms Experience & Skills Required: * 7-10 years of progressive experience in IT risk management, information security, or internal audit, with ...
GRC Archer, WDesk, or other risk and compliance platforms Experience & Skills Required: * 7-10 years of progressive experience in IT risk management, information security, or internal audit, with ...
GRC Archer, WDesk, or other risk and compliance platforms Experience & Skills Required: * 7-10 years of progressive experience in IT risk management, information security, or internal audit, with ...
GRC Archer, WDesk, or other risk and compliance platforms Experience & Skills Required: * 7-10 years of progressive experience in IT risk management, information security, or internal audit, with ...
The Manager, Information Security Compliance and Risk is responsible for leading the firm's Governance, Risk, and Compliance (GRC) program, including regulatory compliance, enterprise risk management ...
The Manager, Information Security Compliance and Risk is responsible for leading the firm's Governance, Risk, and Compliance (GRC) program, including regulatory compliance, enterprise risk management ...
The Manager, Information Security Compliance and Risk is responsible for leading the firm's Governance, Risk, and Compliance (GRC) program, including regulatory compliance, enterprise risk management ...
The Manager, Information Security Compliance and Risk is responsible for leading the firm's Governance, Risk, and Compliance (GRC) program, including regulatory compliance, enterprise risk management ...
The Manager, Information Security Compliance and Risk is responsible for leading the firm's Governance, Risk, and Compliance (GRC) program, including regulatory compliance, enterprise risk management ...
The Manager, Information Security Compliance and Risk is responsible for leading the firm's Governance, Risk, and Compliance (GRC) program, including regulatory compliance, enterprise risk management ...
WHAT WE DO Our Security, Risk and Compliance consultants work with clients at all levels of the ... Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies * Control ...
WHAT WE DO Our Security, Risk and Compliance consultants work with clients at all levels of the ... Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies * Control ...
Lead Risk Specialist - Enterprise Risk
Waltham, MA · Hybrid
$135K - $158K/yr
Reporting to the Director of Risk and Compliance, we're looking for a Risk Manager who can ... GRC systems * Proven ability to lead, coach, and develop team members * Excellent planning and ...
Lead Risk Specialist - Enterprise Risk
Waltham, MA · Hybrid
$135K - $158K/yr
Reporting to the Director of Risk and Compliance, we're looking for a Risk Manager who can ... GRC systems * Proven ability to lead, coach, and develop team members * Excellent planning and ...
... the GRC program. Qualifications : Required : • 6+ years of experience in cybersecurity risk management, information security, technology risk, or a related field. • Demonstrated experience ...
... the GRC program. Qualifications : Required : • 6+ years of experience in cybersecurity risk management, information security, technology risk, or a related field. • Demonstrated experience ...
Cyber - SAP Security and GRC Access & Process Control Consultant / Security Engineer II
Boston, MA · On-site
Configure and support SAP Governance, Risk, and Compliance Access Control capabilities, including ... SAP Security and GRC Access & Process Control Consultant / Security Engineer II Our Deloitte Cyber ...
Cyber - SAP Security and GRC Access & Process Control Consultant / Security Engineer II
Boston, MA · On-site
Configure and support SAP Governance, Risk, and Compliance Access Control capabilities, including ... SAP Security and GRC Access & Process Control Consultant / Security Engineer II Our Deloitte Cyber ...
Cybersecurity Risk Analyst
Cambridge, MA · On-site
$82K - $220K/yr
This team serves as the Governance Risk and Compliance (GRC) tool product owner, performs compliance and risk analyses, develops policy, procedures, and standards, and partners closely with peer ...
Cybersecurity Risk Analyst
Cambridge, MA · On-site
$82K - $220K/yr
This team serves as the Governance Risk and Compliance (GRC) tool product owner, performs compliance and risk analyses, develops policy, procedures, and standards, and partners closely with peer ...
Governance, Risk and Compliance Analyst
Boston, MA · On-site
$76K - $107K/yr
The GRC Analyst will collaborate with teams to assess risk, manage compliance documentation, and ensure that security frameworks and controls are implemented effectively and efficiently. This ...
Governance, Risk and Compliance Analyst
Boston, MA · On-site
$76K - $107K/yr
The GRC Analyst will collaborate with teams to assess risk, manage compliance documentation, and ensure that security frameworks and controls are implemented effectively and efficiently. This ...
Cybersecurity Risk Analyst
Cambridge, MA · Hybrid
$82K - $220K/yr
This team serves as the Governance Risk and Compliance (GRC) tool product owner, performs compliance and risk analyses, develops policy, procedures, and standards, and partners closely with peer ...
Cybersecurity Risk Analyst
Cambridge, MA · Hybrid
$82K - $220K/yr
This team serves as the Governance Risk and Compliance (GRC) tool product owner, performs compliance and risk analyses, develops policy, procedures, and standards, and partners closely with peer ...
Governance, Risk and Compliance Analyst
Boston, MA · Hybrid
$76K - $107K/yr
The GRC Analyst will collaborate with teams to assess risk, manage compliance documentation, and ensure that security frameworks and controls are implemented effectively and efficiently. This ...
Governance, Risk and Compliance Analyst
Boston, MA · Hybrid
$76K - $107K/yr
The GRC Analyst will collaborate with teams to assess risk, manage compliance documentation, and ensure that security frameworks and controls are implemented effectively and efficiently. This ...
Principal Technology Risk Analyst
Boston, MA · On-site
$140K - $150K/yr
... GRC) tools. * DE performing risk assessments and IT audits of secure software development lifecycle processes and procedures -- automated build and deployment pipelines in a DevOps solutions ...
Principal Technology Risk Analyst
Boston, MA · On-site
$140K - $150K/yr
... GRC) tools. * DE performing risk assessments and IT audits of secure software development lifecycle processes and procedures -- automated build and deployment pipelines in a DevOps solutions ...
Principal Technology Risk Analyst
Boston, MA · On-site +1
$140K - $150K/yr
... GRC) tools. * DE performing risk assessments and IT audits of secure software development lifecycle processes and procedures -- automated build and deployment pipelines in a DevOps solutions ...
Principal Technology Risk Analyst
Boston, MA · On-site +1
$140K - $150K/yr
... GRC) tools. * DE performing risk assessments and IT audits of secure software development lifecycle processes and procedures -- automated build and deployment pipelines in a DevOps solutions ...
As a key member of the Security Risk & Audit team, the Technology Risk & Continuity Analyst ... Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools) * Ability to ...
Quick apply
As a key member of the Security Risk & Audit team, the Technology Risk & Continuity Analyst ... Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools) * Ability to ...
Technology Risk & Continuity Analyst
Boston, MA · On-site
$80/hr
As a key member of the Security Risk & Audit team, the Technology Risk & Continuity Analyst ... Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools) * Ability to ...
Technology Risk & Continuity Analyst
Boston, MA · On-site
$80/hr
As a key member of the Security Risk & Audit team, the Technology Risk & Continuity Analyst ... Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools) * Ability to ...
As a key member of the Security Risk & Audit team, the Technology Risk & Continuity Analyst ... Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools) * Ability to ...
As a key member of the Security Risk & Audit team, the Technology Risk & Continuity Analyst ... Familiarity with resilience or GRC platforms (e.g., Riskonnect or similar tools) * Ability to ...
Grc Risk information
See Boston, MA salary details
$24.4K - $43K
2% of jobs
$43K - $61.5K
2% of jobs
$61.5K - $80K
12% of jobs
$91.2K is the 25th percentile. Wages below this are outliers.
$80K - $98.5K
15% of jobs
$98.5K - $117K
16% of jobs
The median wage is $120.7K / yr.
$117K - $135.6K
16% of jobs
$151.9K is the 75th percentile. Wages above this are outliers.
$135.6K - $154.1K
14% of jobs
$154.1K - $172.6K
9% of jobs
$172.6K - $191.1K
10% of jobs
$191.1K - $209.6K
3% of jobs
$209.6K - $228.1K
2% of jobs
$24.4K
$128.5K
$228.1K
How much do grc risk jobs pay per year?
As of Jun 27, 2026, the average yearly pay for grc risk in Boston, MA is $128,476.00, according to ZipRecruiter salary data. Most workers in this role earn between $91,800.00 and $157,500.00 per year, depending on experience, location, and employer.
What is the difference between Grc Risk vs Grc Analyst?
| Aspect | Grc Risk | Grc Analyst |
|---|---|---|
| Certifications | ISO 31000, CRISC, COSO | CISA, CRISC, CISSP |
| Work Environment | Risk management teams, compliance departments | IT, audit, compliance teams |
| Industry Usage | Financial, healthcare, corporate sectors | IT, finance, consulting firms |
| Primary Focus | Identifying and managing enterprise risks | Analyzing controls, assessing risks in systems |
Grc Risk professionals focus on enterprise-wide risk management strategies, while Grc Analysts typically analyze specific controls and systems to identify vulnerabilities. Both roles require similar certifications and often work within the same industries, but Grc Risk has a broader scope in risk oversight, whereas Grc Analysts concentrate on detailed control assessments.
What are popular job titles related to Grc Risk jobs in Boston, MA? For Grc Risk jobs in Boston, MA, the most frequently searched job titles are:
What job categories do people searching Grc Risk jobs in Boston, MA look for? The top searched job categories for Grc Risk jobs in Boston, MA are:
Full-time
Posted 8 days ago
Job description
We are conducting a confidential search for a large, publicly traded global technology company seeking a Lead / Manager, IT Audit & Technology Risk.
This is a high-visibility opportunity to help build and mature the IT audit and technology risk function during a major period of enterprise technology modernization. The company is scaling across advanced technology, automation, AI infrastructure, and next-generation device markets, and is investing heavily in systems, cybersecurity, data protection, and governance.
The right candidate will bring a practical mix of ITGCs, SOX, application controls, ERP / systems implementation risk, cybersecurity process audits, and stakeholder-facing technology risk work.
The company is open on level. Candidates with strong relevant experience will be considered, and the company is also open to more experienced Lead, Manager, or Senior Manager-level candidates who can bring deeper ownership and help build the function over time.
What Youll Work On(gradually, role will evolve as ramp up progresses)
- ITGCs, SOX 404, application controls, and technology-dependent controls
- Major cloud ERP / enterprise system transformation work
- Cybersecurity process audits, including access, encryption, backup/recovery, SIEM, DLP, endpoint protection, firewall governance, and incident response
- CRM / enterprise platform access and data protection reviews
- AI governance, AI access controls, and emerging technology risk
- SDLC, change management, system implementation controls, and audit readiness
- Audit program development, risk assessment, documentation, and reporting
- Coordination with IT, Finance, Internal Audit, Cybersecurity, GRC, external audit, and outside advisory firms
Qualifications
- Relevant experience inIT audit, technology risk, IT controls, SOX ITGC, cyber risk, ERP controls, or related fields
- Big 4 / advisory, corporate IT audit, cyber GRC, or ERP controls background
- Strong ITGC / SOX foundation
- Experience with major system implementations, ERP upgrades, cloud migrations, or enterprise applications
- Ability to audit cybersecurity processes without needing to be a hands-on security engineer
- Strong communication, documentation, and project management skills
- CISA, CIA, CISM, CISSP, CRISC, CPA, or similar certification preferred
Helpful systems/tools exposure may include: Oracle, SAP, Workday, NetSuite, Microsoft Dynamics, Salesforce, Workiva, AuditBoard, ServiceNow GRC, Archer, SIEM, DLP, IAM, endpoint protection, or related platforms.
The position will start as an individual contributor (with 3rd party support as needed) and will grow over time to add direct reports. Part of a broader 8 person team, with broader business partner framework.
Compensation / Level
Expected base salary range: depending on experience and level, plus annual bonus and strong benefits. Level and internal grade, tbd.